Overview

overview

7

Static

static

7

Defraggler...RE.rar

windows7-x64

7

CORE.nfo

windows7-x64

1

FILE_ID.diz

windows7-x64

3

cr-piriform.exe

windows7-x64

7

$PLUGINSDI...nt.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...fo.dll

windows7-x64

3

$PLUGINSDIR/inetc.dll

windows7-x64

3

$PLUGINSDI...er.bmp

windows7-x64

3

$PLUGINSDI...rd.bmp

windows7-x64

3

$PLUGINSDI...gs.dll

windows7-x64

3

Defraggler.exe

windows7-x64

1

Defraggler64.exe

windows7-x64

1

DefragglerShell.dll

windows7-x64

1

DefragglerShell64.dll

windows7-x64

7

branding.dll

windows7-x64

1

df.exe

windows7-x64

1

df64.exe

windows7-x64

1

uninst.exe

windows7-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    Defraggler-Professional-2.22.995.rar

  • Size

    4.0MB

  • MD5

    331c53937221d56cc18e924704f156c1

  • SHA1

    7b37cb892618fa54f49fd0de759f82582cfaa957

  • SHA256

    3cc5ab066d19ee92a1b081d558982ec0151993a11fbaec4601da92a0228e7391

  • SHA512

    1c7dd3d45aea49fac55656a57fe917719528e9169dd79674998e54bd4eacfa6440725a3595e29eae9147ee0181cc16136a5b5fd3d9ea838cae7f830cfda7c9af

  • SSDEEP

    98304:TdENwVImQBpzmhGZgCX2xXbkARCzW2o7TtYgHV+L:5MXBktM2tbNP2o7xYEU

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 6 IoCs

    Checks for missing Authenticode signature.

Files

  • Defraggler-Professional-2.22.995.rar
    .rar

    Password: 1progs

  • Defraggler Professional 2.22.995/Keymaker-CORE.rar
    .rar

    Password: 1progs

  • CORE.NFO
  • FILE_ID.DIZ
  • cr-piriform.exe
    .exe windows:5 windows x86 arch:x86

    Password: 1progs


    Headers

    Sections

  • Defraggler Professional 2.22.995/dfsetup222_pro.exe
    .exe windows:5 windows x86 arch:x86

    Password: 1progs

    377a97652fdf5740d8cc11d5ce124fed


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/ButtonEvent.dll
    .dll windows:5 windows x86 arch:x86

    Password: 1progs

    59070d80178eb0db7b7113b7a8608502


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:5 windows x86 arch:x86

    Password: 1progs

    039bcbc605477e8e87ec550c2e60e748


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/UserInfo.dll
    .dll windows:5 windows x86 arch:x86

    Password: 1progs

    45d25ca52c312b2254c60dbcb30342d1


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/inetc.dll
    .dll windows:4 windows x86 arch:x86

    Password: 1progs

    917ae9b9adb269abd5543f5bf5676bac


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/modern-header.bmp
  • $PLUGINSDIR/modern-wizard.bmp
  • $PLUGINSDIR/nsDialogs.dll
    .dll windows:5 windows x86 arch:x86

    Password: 1progs

    9ea5bdc8c90dfcffe309465c26c89758


    Headers

    Imports

    Exports

    Sections

  • Defraggler.exe
    .exe windows:5 windows x86 arch:x86

    5bfb19d220a7247e2e7aac4a15f854ce


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Defraggler64.exe
    .exe windows:5 windows x64 arch:x64

    8f336c64e1d80698ba1e750e76a88685


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • DefragglerShell.dll.new
    .dll regsvr32 windows:5 windows x86 arch:x86

    c019fdaa2fc91e1122c39eb9b14134d8


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • DefragglerShell64.dll.new
    .dll regsvr32 windows:5 windows x64 arch:x64

    25652ebef723d48f8d6e3bd7ebb6b38d


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Lang/lang-1025.dll
    .dll windows:6 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • Lang/lang-1026.dll
    .dll windows:6 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • Lang/lang-1027.dll
    .dll windows:6 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • Lang/lang-1028.dll
    .dll windows:6 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • Lang/lang-1029.dll
    .dll windows:6 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • Lang/lang-1030.dll
    .dll windows:6 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • Lang/lang-1031.dll
    .dll windows:6 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • Lang/lang-1032.dll
    .dll windows:6 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • Lang/lang-1034.dll
    .dll windows:6 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • Lang/lang-1035.dll
    .dll windows:6 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • Lang/lang-1036.dll
    .dll windows:6 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • Lang/lang-1037.dll
    .dll windows:6 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • Lang/lang-1038.dll
    .dll windows:6 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • Lang/lang-1040.dll
    .dll windows:6 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • Lang/lang-1041.dll
    .dll windows:6 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • Lang/lang-1043.dll
    .dll windows:6 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • Lang/lang-1044.dll
    .dll windows:6 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • Lang/lang-1045.dll
    .dll windows:6 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • Lang/lang-1046.dll
    .dll windows:6 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • Lang/lang-1048.dll
    .dll windows:6 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • Lang/lang-1049.dll
    .dll windows:6 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • Lang/lang-1050.dll
    .dll windows:6 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • Lang/lang-1051.dll
    .dll windows:6 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • Lang/lang-1052.dll
    .dll windows:6 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • Lang/lang-1053.dll
    .dll windows:6 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • Lang/lang-1055.dll
    .dll windows:6 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • Lang/lang-1057.dll
    .dll windows:6 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • Lang/lang-1058.dll
    .dll windows:6 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • Lang/lang-1059.dll
    .dll windows:6 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • Lang/lang-1060.dll
    .dll windows:6 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • Lang/lang-1061.dll
    .dll windows:6 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • Lang/lang-1062.dll
    .dll windows:6 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • Lang/lang-1063.dll
    .dll windows:6 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • Lang/lang-1065.dll
    .dll windows:6 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • Lang/lang-1066.dll
    .dll windows:6 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • Lang/lang-1067.dll
    .dll windows:6 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • Lang/lang-1071.dll
    .dll windows:6 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • Lang/lang-1079.dll
    .dll windows:6 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • Lang/lang-2052.dll
    .dll windows:6 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • Lang/lang-2070.dll
    .dll windows:6 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • Lang/lang-5146.dll
    .dll windows:6 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • Lang/lang-9999.dll
    .dll windows:6 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • branding.dll
    .dll windows:6 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • df.exe
    .exe windows:5 windows x86 arch:x86

    86003c972530424ba3b36b02f93ed7bb


    Code Sign

    Headers

    Imports

    Sections

  • df64.exe
    .exe windows:5 windows x64 arch:x64

    ac610a8d1917b8ba0e63a813ae03bb8d


    Code Sign

    Headers

    Imports

    Sections

  • uninst.exe
    .exe windows:5 windows x86 arch:x86

    377a97652fdf5740d8cc11d5ce124fed


    Code Sign

    Headers

    Imports

    Sections

  • Defraggler Professional 2.22.995/Скачано с 1progs.ru.url
    .url