General

  • Target

    X-VPN_Installer76.1_4082_7d9dc403_2024-05-07-10-31-501.exe

  • Size

    35.9MB

  • MD5

    9f8ef39a92f979705e48f16e1e6886d6

  • SHA1

    e0b51a19a1f6f578650f9a936c072821c3e708c5

  • SHA256

    c70676f0391c63ab659a804021611cc988f33e7ac254ccb977fa025343305c21

  • SHA512

    4bddf2363626995ce2d035d2fa69a2cac82df67b8c2692f9e1268e09525b18c5a9a6e296baccd81654ac87b32fe64527b7c6c1a590c331a8c772c4f5f02872ed

  • SSDEEP

    786432:Hk16ELxEoeZ/SBm5kTDNBffTL7sDbGByB/z5tHUqcxxcW:Hd4xEorBmCfHf7sDsA5y

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • X-VPN_Installer76.1_4082_7d9dc403_2024-05-07-10-31-501.exe
    .exe windows:4 windows x86 arch:x86

    61259b55b8912888e90f516ca08dc514


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    fc0224e99e736751432961db63a41b76


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/modern-wizard.bmp
  • $PLUGINSDIR/nsDialogs.dll
    .dll windows:4 windows x86 arch:x86

    6b5c4f7d679059f68f1269aad3a5cecd


    Headers

    Imports

    Exports

    Sections

  • X-VPN.exe
    .exe windows:6 windows x86 arch:x86

    2eb141a560162de8a106c96c6d67cb39


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • X-VPN.ico
  • lib1/casz8hnj8b.dll
    .dll windows:5 windows x86 arch:x86

    c6632c8f0eb343465a563cc9baa26284


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • lib1/cef.pak
    .js
  • lib1/cef_100_percent.pak
    .js
  • lib1/cef_200_percent.pak
    .js
  • lib1/en-US.pak
  • lib1/icudtl.dat
  • lib1/libcef.dll
    .dll windows:5 windows x86 arch:x86

    805733f3466aa188ee970339e85e7363


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • lib1/natives_blob.bin
    .js
  • lib1/snapshot_blob.bin