Overview

overview

7

Static

static

3

662ce2779a...5c.exe

windows7-x64

7

662ce2779a...5c.exe

windows10-2004-x64

7

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...fo.dll

windows7-x64

3

$PLUGINSDI...fo.dll

windows10-2004-x64

3

$PLUGINSDI...gs.dll

windows7-x64

3

$PLUGINSDI...gs.dll

windows10-2004-x64

3

ANRITSU CO...NT.rtf

windows7-x64

4

ANRITSU CO...NT.rtf

windows10-2004-x64

1

BackendModels.dll

windows7-x64

1

BackendModels.dll

windows10-2004-x64

1

FreeImageNET.dll

windows7-x64

1

FreeImageNET.dll

windows10-2004-x64

1

MapStore.dll

windows7-x64

1

MapStore.dll

windows10-2004-x64

1

MapStoreViewer.exe

windows7-x64

3

MapStoreViewer.exe

windows10-2004-x64

3

Newtonsoft.Json.dll

windows7-x64

1

Newtonsoft.Json.dll

windows10-2004-x64

1

Resources/...mon.js

windows7-x64

3

Resources/...mon.js

windows10-2004-x64

3

Resources/...age.js

windows7-x64

3

Resources/...age.js

windows10-2004-x64

3

Resources/...eak.js

windows7-x64

3

Resources/...eak.js

windows10-2004-x64

3

Resources/...ata.js

windows7-x64

3

Resources/...ata.js

windows10-2004-x64

3

Resources/...h.html

windows7-x64

1

Resources/...h.html

windows10-2004-x64

1

Resources/...h.html

windows7-x64

1

Resources/...h.html

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    662ce2779aeca5637684558f792f43c114ff5d6dd2568c351f7cccd0dfab935c.exe

  • Size

    3.3MB

  • MD5

    ce8ec8efcb348c9c212af4761f957f59

  • SHA1

    63358716646a91e0478e7332615fc1746f8352b5

  • SHA256

    662ce2779aeca5637684558f792f43c114ff5d6dd2568c351f7cccd0dfab935c

  • SHA512

    2c1137f6aedfa90a89903e28486ecdcc7eb9d5a6fea014243caaa430655bdf01c6261331f170c076a182bfeafe2646b2d8a02f7c70ec3ed65ff15f7ae8aec7bd

  • SSDEEP

    98304:7Wx+YrsQ0kqq7U9e1v8OPDR9OZejOlO5mf4+0xe49:7LdD799uvlPHOZeaYkH949

Score
3/10

Malware Config

Signatures

  • Unsigned PE 13 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 4 IoCs
    installer

Files

  • 662ce2779aeca5637684558f792f43c114ff5d6dd2568c351f7cccd0dfab935c.exe
    .exe windows:4 windows x86 arch:x86

    ced282d9b261d1462772017fe2f6972b


    Headers

    Imports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    8c8a576201f68de1a3f26fc723b9f30f


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/UserInfo.dll
    .dll windows:4 windows x86 arch:x86

    d576645bcd8a66d2fe678a075f4cc6e0


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/modern-wizard.bmp
  • $PLUGINSDIR/nsDialogs.dll
    .dll windows:4 windows x86 arch:x86

    ebc2d915841be8afc8fa1ee9f6850960


    Headers

    Imports

    Exports

    Sections

  • ANRITSU COMPANY FREE SOFTWARE LICENSE AGREEMENT.rtf
    .rtf
  • BackendModels.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • FreeImageNET.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • MapMaster-16x16.ico
  • MapMaster-32x32.ico
  • MapStore.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • MapStoreViewer.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

  • Newtonsoft.Json.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • Resources/connect/Anritsu.jpg
    .jpg
  • Resources/connect/Thumbs.db
  • Resources/connect/css/skin_IE9.css
  • Resources/connect/images/reverb_mobile_certified_badge.png
    .png
  • Resources/connect/images/skin.png
    .png
  • Resources/connect/images/social.png
    .png
  • Resources/connect/images/splash.jpg
    .jpg
  • Resources/connect/scripts/common.js
    .js
  • Resources/connect/scripts/page.js
    .js
  • Resources/connect/scripts/unibreak.js
    .js
  • Resources/connect/scripts/unidata.js
    .js
  • Resources/connect/search.html
    .html .js polyglot
  • Resources/connect/splash.html
    .html .js polyglot
  • Resources/css/skin_IE9.css
  • Resources/easyMap_Tools.html
    .html .js polyglot
  • Resources/easyMap_Tools/Anritsu.jpg
    .jpg
  • Resources/easyMap_Tools/FrontMatter.html
    .html .js polyglot
  • Resources/easyMap_Tools/Installing.3.1.html
    .html .js polyglot
  • Resources/easyMap_Tools/Installing.3.2.html
    .html .js polyglot
  • Resources/easyMap_Tools/Intro.html
    .html .js polyglot
  • Resources/easyMap_Tools/Overview.2.1.html
    .html .js polyglot
  • Resources/easyMap_Tools/Overview.2.2.html
    .html .js polyglot
  • Resources/easyMap_Tools/Thumbs.db
  • Resources/easyMap_Tools/chap-1-intro.5.1.html
    .html .js polyglot
  • Resources/easyMap_Tools/chap-1-intro.5.2.html
    .html .js polyglot
  • Resources/easyMap_Tools/chap-1-intro.5.3.html
    .html .js polyglot
  • Resources/easyMap_Tools/chap-1-intro.5.4.html
    .html .js polyglot
  • Resources/easyMap_Tools/chap-1-intro.5.5.html
    .html .js polyglot
  • Resources/easyMap_Tools/chap-2-display-layout.6.1.html
    .html .js polyglot
  • Resources/easyMap_Tools/chap-2-display-layout.6.2.html
    .html .js polyglot
  • Resources/easyMap_Tools/chap-3-how-to.7.01.html
    .html .js polyglot
  • Resources/easyMap_Tools/chap-3-how-to.7.02.html
    .html .js polyglot
  • Resources/easyMap_Tools/chap-3-how-to.7.03.html
    .html .js polyglot
  • Resources/easyMap_Tools/chap-3-how-to.7.04.html
    .html .js polyglot
  • Resources/easyMap_Tools/chap-3-how-to.7.05.html
    .html .js polyglot
  • Resources/easyMap_Tools/chap-3-how-to.7.06.html
    .html .js polyglot
  • Resources/easyMap_Tools/chap-3-how-to.7.07.html
    .html .js polyglot
  • Resources/easyMap_Tools/chap-3-how-to.7.08.html
    .html .js polyglot
  • Resources/easyMap_Tools/chap-3-how-to.7.09.html
    .html .js polyglot
  • Resources/easyMap_Tools/chap-3-how-to.7.10.html
    .html .js polyglot
  • Resources/easyMap_Tools/chap-4-help.8.1.html
    .html .js polyglot
  • Resources/easyMap_Tools/chap-4-help.8.2.html
    .html .js polyglot
  • Resources/easyMap_Tools/chap-4-help.8.3.html
    .html .js polyglot
  • Resources/easyMap_Tools/chap-4-help.8.4.html
    .html .js polyglot
  • Resources/easyMap_Tools/css/FrontMatter.css
  • Resources/easyMap_Tools/css/FrontMatter_2.css
  • Resources/easyMap_Tools/css/FrontMatter_IE7.css
  • Resources/easyMap_Tools/css/FrontMatter_IE7_2.css
  • Resources/easyMap_Tools/css/Installing.css
  • Resources/easyMap_Tools/css/Installing_IE7.css
  • Resources/easyMap_Tools/css/Intro.css
  • Resources/easyMap_Tools/css/Intro_IE7.css
  • Resources/easyMap_Tools/css/Overview.css
  • Resources/easyMap_Tools/css/Overview_IE7.css
  • Resources/easyMap_Tools/css/chap-1-intro.css
  • Resources/easyMap_Tools/css/chap-1-intro_IE7.css
  • Resources/easyMap_Tools/css/chap-2-display-layout.css
  • Resources/easyMap_Tools/css/chap-2-display-layout_IE7.css
  • Resources/easyMap_Tools/css/chap-3-how-to.css
  • Resources/easyMap_Tools/css/chap-3-how-to_IE7.css
  • Resources/easyMap_Tools/css/chap-4-help.css
  • Resources/easyMap_Tools/css/chap-4-help_IE7.css
  • Resources/easyMap_Tools/css/print.css
  • Resources/easyMap_Tools/css/skin.css
  • Resources/easyMap_Tools/css/skin_IE9.css
  • Resources/easyMap_Tools/css/social.css
  • Resources/easyMap_Tools/css/webworks.css
  • Resources/easyMap_Tools/images/490JarvisMap.png
    .png
  • Resources/easyMap_Tools/images/About.png
    .png
  • Resources/easyMap_Tools/images/FrontMatter.2.1.1.jpg
    .jpg
  • Resources/easyMap_Tools/images/FrontMatter.2.1.2.jpg
    .jpg
  • Resources/easyMap_Tools/images/HelpFile.png
    .png
  • Resources/easyMap_Tools/images/Installing.3.2.1.jpg
    .jpg
  • Resources/easyMap_Tools/images/Installing.3.2.2.jpg
    .jpg
  • Resources/easyMap_Tools/images/Intro.1.1.1.jpg
    .jpg
  • Resources/easyMap_Tools/images/LagacyMap.png
    .png
  • Resources/easyMap_Tools/images/MapFileViewer.png
    .png
  • Resources/easyMap_Tools/images/Overview.2.2.1.jpg
    .jpg
  • Resources/easyMap_Tools/images/WebProxyConfig.png
    .png
  • Resources/easyMap_Tools/images/blank.gif
    .gif
  • Resources/easyMap_Tools/images/chap-1-intro.5.5.1.jpg
    .jpg
  • Resources/easyMap_Tools/images/chap-1-intro.5.5.2.jpg
    .jpg
  • Resources/easyMap_Tools/images/chap-2-display-layout.6.2.1.jpg
    .jpg
  • Resources/easyMap_Tools/images/chap-2-display-layout.6.2.2.jpg
    .jpg
  • Resources/easyMap_Tools/images/chap-3-how-to.7.06.1.jpg
    .jpg
  • Resources/easyMap_Tools/images/chap-3-how-to.7.10.1.jpg
    .jpg
  • Resources/easyMap_Tools/images/chap-4-help.8.3.1.jpg
    .jpg
  • Resources/easyMap_Tools/images/chap-4-help.8.3.2.jpg
    .jpg
  • Resources/easyMap_Tools/images/chap-4-help.8.4.1.jpg
    .jpg
  • Resources/easyMap_Tools/images/map-capture-detailed-a-01.png
    .png
  • Resources/easyMap_Tools/images/reverb_mobile_certified_badge.png
    .png
  • Resources/easyMap_Tools/images/splash.jpg
    .jpg
  • Resources/easyMap_Tools/pairs/pair1.js
    .js
  • Resources/easyMap_Tools/pairs/pair10.js
    .js
  • Resources/easyMap_Tools/pairs/pair1_2.js
    .js
  • Resources/easyMap_Tools/pairs/pair1_3.js
    .js
  • Resources/easyMap_Tools/pairs/pair1_4.js
    .js
  • Resources/easyMap_Tools/pairs/pair1_5.js
    .js
  • Resources/easyMap_Tools/pairs/pair1_6.js
    .js
  • Resources/easyMap_Tools/pairs/pair1_7.js
    .js
  • Resources/easyMap_Tools/pairs/pair1_8.js
    .js
  • Resources/easyMap_Tools/pairs/pair2.js
    .js
  • Resources/easyMap_Tools/pairs/pair2_2.js
    .js
  • Resources/easyMap_Tools/pairs/pair2_3.js
    .js
  • Resources/easyMap_Tools/pairs/pair2_4.js
    .js
  • Resources/easyMap_Tools/pairs/pair2_5.js
    .js
  • Resources/easyMap_Tools/pairs/pair2_6.js
    .js
  • Resources/easyMap_Tools/pairs/pair3.js
    .js
  • Resources/easyMap_Tools/pairs/pair3_2.js
    .js
  • Resources/easyMap_Tools/pairs/pair3_3.js
    .js
  • Resources/easyMap_Tools/pairs/pair4.js
    .js
  • Resources/easyMap_Tools/pairs/pair4_2.js
    .js
  • Resources/easyMap_Tools/pairs/pair4_3.js
    .js
  • Resources/easyMap_Tools/pairs/pair5.js
    .js
  • Resources/easyMap_Tools/pairs/pair5_2.js
    .js
  • Resources/easyMap_Tools/pairs/pair6.js
    .js
  • Resources/easyMap_Tools/pairs/pair7.js
    .js
  • Resources/easyMap_Tools/pairs/pair8.js
    .js
  • Resources/easyMap_Tools/pairs/pair9.js
    .js
  • Resources/easyMap_Tools/scripts/common.js
    .js
  • Resources/easyMap_Tools/scripts/page.js
    .js
  • Resources/easyMap_Tools/scripts/search-client.js
    .js
  • Resources/easyMap_Tools/scripts/unibreak.js
    .js
  • Resources/easyMap_Tools/scripts/unidata.js
    .js
  • Resources/easyMap_Tools/wwhelp/wwhimpl/api.htm
    .html .js polyglot
  • Resources/easyMap_Tools_ix.html
    .html .js polyglot
  • Resources/easyMap_Tools_sx.js
    .js
  • Resources/index.html
    .html .js polyglot
  • Resources/wwhelp/wwhimpl/api.htm
    .html .js polyglot
  • UninstalleasyMapTools.exe
    .exe windows:4 windows x86 arch:x86

    ced282d9b261d1462772017fe2f6972b


    Headers

    Imports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    8c8a576201f68de1a3f26fc723b9f30f


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/modern-wizard.bmp
  • $PLUGINSDIR/nsDialogs.dll
    .dll windows:4 windows x86 arch:x86

    ebc2d915841be8afc8fa1ee9f6850960


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsProcess.dll
    .dll windows:4 windows x86 arch:x86

    c9fc7f6df8fedf8f8f1f9f820c072664


    Headers

    Imports

    Exports

    Sections

  • easyMapTools.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

  • easyMapTools.exe.config
    .xml