Overview

overview

7

Static

static

3

45797d7340...16.exe

windows7-x64

7

45797d7340...16.exe

windows10-2004-x64

7

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...ec.dll

windows7-x64

3

$PLUGINSDI...ec.dll

windows10-2004-x64

3

$PROGRAMFI...er.dll

windows7-x64

1

$PROGRAMFI...er.dll

windows10-2004-x64

1

$PROGRAMFI...OR.dll

windows7-x64

1

$PROGRAMFI...OR.dll

windows10-2004-x64

1

$PROGRAMFI...pf.dll

windows7-x64

1

$PROGRAMFI...pf.dll

windows10-2004-x64

1

$PROGRAMFI...Id.dll

windows7-x64

1

$PROGRAMFI...Id.dll

windows10-2004-x64

1

$PROGRAMFI...id.dll

windows10-2004-x64

1

$PROGRAMFI...ve.dll

windows7-x64

1

$PROGRAMFI...ve.dll

windows10-2004-x64

1

$PROGRAMFI...on.dll

windows7-x64

1

$PROGRAMFI...on.dll

windows10-2004-x64

1

$PROGRAMFI...do.dll

windows7-x64

1

$PROGRAMFI...do.dll

windows10-2004-x64

1

$PROGRAMFI...PF.dll

windows7-x64

1

$PROGRAMFI...PF.dll

windows10-2004-x64

1

$PROGRAMFI...uf.dll

windows7-x64

1

$PROGRAMFI...uf.dll

windows10-2004-x64

1

$PROGRAMFI...pi.dll

windows7-x64

1

$PROGRAMFI...pi.dll

windows10-2004-x64

1

$PROGRAMFI...re.dll

windows7-x64

1

$PROGRAMFI...re.dll

windows10-2004-x64

1

$PROGRAMFI...ts.dll

windows7-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    45797d73401a5f4e533b2a05da44ae11e9634094b0c2ae54b67ac09ae62be616.exe

  • Size

    9.8MB

  • MD5

    8d970590ed31cd31cf222352564ee3c8

  • SHA1

    a6e3981d77bb700e281145098e3674905e0cf03f

  • SHA256

    45797d73401a5f4e533b2a05da44ae11e9634094b0c2ae54b67ac09ae62be616

  • SHA512

    5c21db82d20722ddf66e3ab3a58a2827f69795fba084849c438bee03f556655574eb67b1cbbeb0fad7d429ba90b9ba0a7611f46953600c64e9b5b4c4e94b1ce8

  • SSDEEP

    196608:R4N0A6H43EBJ/1230G1o125DFVWy16zWx0vVd3rjYjPBOa2LIzisJmAl1Uglttxs:RvAdUp8/q1+XWy16zMwXjY7Bd2LIDmAc

Score
3/10

Malware Config

Signatures

  • Unsigned PE 29 IoCs

    Checks for missing Authenticode signature.

Files

  • 45797d73401a5f4e533b2a05da44ae11e9634094b0c2ae54b67ac09ae62be616.exe
    .exe windows:4 windows x86 arch:x86

    56a78d55f3f7af51443e58e0ce2fb5f6


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/InstallOptions.dll
    .dll windows:4 windows x86 arch:x86

    4b45b7e00344a87332fbd12653854d1a


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    fc0224e99e736751432961db63a41b76


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/ioSpecial.ini
  • $PLUGINSDIR/modern-wizard.bmp
  • $PLUGINSDIR/nsExec.dll
    .dll windows:4 windows x86 arch:x86

    c1c7505e1e6e929ebb6b9100e55b050a


    Headers

    Imports

    Exports

    Sections

  • $PROGRAMFILES/IDmelon/Pairing Tool/$PROGRAMFILES/IDmelon/Pairing Tool/uninstall.exe.nsis
  • $PROGRAMFILES/IDmelon/Pairing Tool/App.config
  • $PROGRAMFILES/IDmelon/Pairing Tool/BluetoothHandler.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • $PROGRAMFILES/IDmelon/Pairing Tool/BluetoothHandler.dll.config
  • $PROGRAMFILES/IDmelon/Pairing Tool/CBOR.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • $PROGRAMFILES/IDmelon/Pairing Tool/CSharpControls.Wpf.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • $PROGRAMFILES/IDmelon/Pairing Tool/ClientLog.config
  • $PROGRAMFILES/IDmelon/Pairing Tool/DefaultLog.config
  • $PROGRAMFILES/IDmelon/Pairing Tool/DeviceId.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • $PROGRAMFILES/IDmelon/Pairing Tool/Driver/PairingToolFidoVhid.dll
    .dll windows:10 windows x64 arch:x64

    6228a6fecb4dd64c7938ee1aeed84272


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • $PROGRAMFILES/IDmelon/Pairing Tool/Driver/pairingtoolfidovhid.inf
  • $PROGRAMFILES/IDmelon/Pairing Tool/Driver/wudf.cat
  • $PROGRAMFILES/IDmelon/Pairing Tool/EllipticCurve.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • $PROGRAMFILES/IDmelon/Pairing Tool/Encryption.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • $PROGRAMFILES/IDmelon/Pairing Tool/Fido.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • $PROGRAMFILES/IDmelon/Pairing Tool/Fido.dll.config
  • $PROGRAMFILES/IDmelon/Pairing Tool/FontAwesome.WPF.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • $PROGRAMFILES/IDmelon/Pairing Tool/Google.Protobuf.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • $PROGRAMFILES/IDmelon/Pairing Tool/Grpc.Core.Api.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • $PROGRAMFILES/IDmelon/Pairing Tool/Grpc.Core.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • $PROGRAMFILES/IDmelon/Pairing Tool/GrpcClients.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • $PROGRAMFILES/IDmelon/Pairing Tool/GrpcClients.dll.config
  • $PROGRAMFILES/IDmelon/Pairing Tool/IDmelonUserInteractionMonitoring.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Code Sign

    Headers

    Imports

    Sections

  • $PROGRAMFILES/IDmelon/Pairing Tool/IDmelonUserInteractionMonitoring.exe.config
  • $PROGRAMFILES/IDmelon/Pairing Tool/IDmelonVirtualHidAPI.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • $PROGRAMFILES/IDmelon/Pairing Tool/IDmelonVirtualHidAPI.dll.config
  • $PROGRAMFILES/IDmelon/Pairing Tool/Logger.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • $PROGRAMFILES/IDmelon/Pairing Tool/Logger.dll.config
  • $PROGRAMFILES/IDmelon/Pairing Tool/Microsoft.Bcl.AsyncInterfaces.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • $PROGRAMFILES/IDmelon/Pairing Tool/Microsoft.Xaml.Behaviors.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • $PROGRAMFILES/IDmelon/Pairing Tool/Newtonsoft.Json.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • $PROGRAMFILES/IDmelon/Pairing Tool/Numbers.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • $PROGRAMFILES/IDmelon/Pairing Tool/Pairing Tool.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Code Sign

    Headers

    Imports

    Sections

  • $PROGRAMFILES/IDmelon/Pairing Tool/Pairing Tool.exe.config
  • $PROGRAMFILES/IDmelon/Pairing Tool/QRCoder.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • $PROGRAMFILES/IDmelon/Pairing Tool/RestSharp.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • $PROGRAMFILES/IDmelon/Pairing Tool/Scripts/devcon.exe
    .exe windows:10 windows x64 arch:x64

    a0225eb3236ea941773b705076ada2af


    Headers

    Imports

    Sections

  • $PROGRAMFILES/IDmelon/Pairing Tool/Scripts/disabledrv.bat
  • $PROGRAMFILES/IDmelon/Pairing Tool/Scripts/enabledrv.bat
  • $PROGRAMFILES/IDmelon/Pairing Tool/Scripts/installdrv.bat
  • $PROGRAMFILES/IDmelon/Pairing Tool/Scripts/uninstalldrv.bat
  • $PROGRAMFILES/IDmelon/Pairing Tool/SendGrid.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • $PROGRAMFILES/IDmelon/Pairing Tool/ServerApi.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • $PROGRAMFILES/IDmelon/Pairing Tool/ServerApi.dll.config
  • $PROGRAMFILES/IDmelon/Pairing Tool/Service.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Code Sign

    Headers

    Imports

    Sections

  • $PROGRAMFILES/IDmelon/Pairing Tool/Service.exe.config
  • $PROGRAMFILES/IDmelon/Pairing Tool/SocketIO.Core.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • $PROGRAMFILES/IDmelon/Pairing Tool/SocketIO.Serializer.Core.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • $PROGRAMFILES/IDmelon/Pairing Tool/SocketIO.Serializer.SystemTextJson.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • $PROGRAMFILES/IDmelon/Pairing Tool/SocketIOClient.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • $PROGRAMFILES/IDmelon/Pairing Tool/StarkbankEcdsa.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • $PROGRAMFILES/IDmelon/Pairing Tool/System.Buffers.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • $PROGRAMFILES/IDmelon/Pairing Tool/System.CodeDom.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • $PROGRAMFILES/IDmelon/Pairing Tool/System.Drawing.Common.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • $PROGRAMFILES/IDmelon/Pairing Tool/System.Memory.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • $PROGRAMFILES/IDmelon/Pairing Tool/System.Numerics.Vectors.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • $PROGRAMFILES/IDmelon/Pairing Tool/System.Runtime.CompilerServices.Unsafe.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • $PROGRAMFILES/IDmelon/Pairing Tool/System.Text.Encodings.Web.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • $PROGRAMFILES/IDmelon/Pairing Tool/System.Text.Json.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • $PROGRAMFILES/IDmelon/Pairing Tool/System.Threading.Tasks.Extensions.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • $PROGRAMFILES/IDmelon/Pairing Tool/System.ValueTuple.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • $PROGRAMFILES/IDmelon/Pairing Tool/TagReaderGRPC.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • $PROGRAMFILES/IDmelon/Pairing Tool/TagReaderGRPC.dll.config
  • $PROGRAMFILES/IDmelon/Pairing Tool/URIUtility.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • $PROGRAMFILES/IDmelon/Pairing Tool/WpfAnimatedGif.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • $PROGRAMFILES/IDmelon/Pairing Tool/grpc_csharp_ext.x64.dll
    .dll windows:6 windows x64 arch:x64

    ddc1242eabc6dfe5e51e45049088122c


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • $PROGRAMFILES/IDmelon/Pairing Tool/grpc_csharp_ext.x86.dll
    .dll windows:6 windows x86 arch:x86

    4e1ce58652b71ded429a7aa1a9d5246a


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • $PROGRAMFILES/IDmelon/Pairing Tool/log4net.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • $PROGRAMFILES/IDmelon/Pairing Tool/nssm.exe
    .exe windows:5 windows x64 arch:x64

    486303637bc6ec8cd38f2967cc02503d


    Code Sign

    Headers

    Imports

    Sections