General

  • Target

    MSSPResExtractor.exe

  • Size

    380KB

  • MD5

    93e1d4705cd58b0a9371f6e5decd9cbb

  • SHA1

    867689063890f63b201a6f80b6961618c2847903

  • SHA256

    6170d2f5db43254aa1746a428141b7e3205cc134eacc8c2320f4e54cc791765b

  • SHA512

    590318a1583e388e30aa1838d9a158954aee9ac930c276ea3c3fc6a2b5774c22b4c128dd1d8f3ba40eb8958eec7158fe7f6dd2eee7cbbc8731f4568873097bfa

  • SSDEEP

    6144:fwz+xPd2EUdcOEwjaXarOQjHL3lwwM7bV1hFiow4QaUbif4Wfo:4+xPQCwUgFvi3b6OUhP

Score
1/10

Malware Config

Signatures

  • NSIS installer 2 IoCs

Files

  • MSSPResExtractor.exe
    .exe windows:4 windows x86 arch:x86

    Password: 123

    3abe302b6d9a1256e6a915429af4ffd2


    Code Sign

    Headers

    Imports

    Sections

  • Install_complete.jpg
    .jpg

    Password: 123

  • UninstallConfirm_wv.htm
    .js
  • Uninstall_wv.htm
    .js
  • Welcome_Install.jpg
  • bg_bottom_left.png
    .png

    Password: 123

  • bg_bottom_right.png
    .png

    Password: 123

  • bg_bottom_x.png
    .png

    Password: 123

  • bg_left_y.png
    .png

    Password: 123

  • bg_progress.png
    .png

    Password: 123

  • bg_progressbar.png
    .png

    Password: 123

  • bg_right_y.png
    .png

    Password: 123

  • bg_status.png
    .png
  • bg_top_left.png
    .png
  • bg_top_right.png
    .png
  • bg_top_x.png
    .png
  • bg_warning.png
    .png
  • btn_close.png
    .png
  • btn_min.png
    .png
  • btn_normal_disabled_left.png
    .png
  • btn_normal_disabled_right.png
    .png
  • btn_normal_left.png
    .png
  • btn_normal_right.png
    .png
  • btn_primary_left.png
    .png
  • btn_primary_right.png
    .png
  • btn_small_left.png
    .png
  • btn_small_right.png
    .png
  • error-bgs.png
    .png
  • error_wv.htm
    .html .js polyglot
  • first_wv.htm
    .html .js polyglot
  • icon_inprogress.png
    .png
  • install_wv.htm
    .js
  • offer_background.png
    .png
  • status_wv.htm
    .js
  • uninstallEnd_wv.htm
    .js
  • warning.png
    .png
  • warning_wv.htm
    .html .js polyglot
  • welcome_wv.htm
    .html .js polyglot

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.