Overview

overview

3

Static

static

3

Bitsum Pro....16.7z

windows7-x64

3

Bitsum Pro....16.7z

windows10-2004-x64

3

BOA.zip

windows7-x64

1

BOA.zip

windows10-2004-x64

1

Activator.exe

windows7-x64

3

Activator.exe

windows10-2004-x64

3

BOP114.rar

windows7-x64

3

BOP114.rar

windows10-2004-x64

3

Patch.exe

windows7-x64

3

Patch.exe

windows10-2004-x64

3

Follow us ...ff.url

windows7-x64

1

Follow us ...ff.url

windows10-2004-x64

1

Follow us ...yz.txt

windows7-x64

1

Follow us ...yz.txt

windows10-2004-x64

1

Follow us ...OS.png

windows7-x64

1

Follow us ...OS.png

windows10-2004-x64

3

Follow us ...OS.url

windows7-x64

1

Follow us ...OS.url

windows10-2004-x64

1

Follow us ...nk.url

windows7-x64

1

Follow us ...nk.url

windows10-2004-x64

1

Follow us ...yz.url

windows7-x64

1

Follow us ...yz.url

windows10-2004-x64

1

Follow us ...go.png

windows7-x64

1

Follow us ...go.png

windows10-2004-x64

3

Follow us ...AQ.jpg

windows7-x64

1

Follow us ...AQ.jpg

windows10-2004-x64

3

Follow us ...om.txt

windows7-x64

1

Follow us ...om.txt

windows10-2004-x64

1

Follow us ...LG.png

windows7-x64

1

Follow us ...LG.png

windows10-2004-x64

3

Follow us ...OM.png

windows7-x64

1

Follow us ...OM.png

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Bitsum Process Lasso Pro 14.1.1.16.7z

  • Size

    8.1MB

  • MD5

    a4d01bfd78b3a2c1ddfaf9972da8faee

  • SHA1

    57250ea9dd15a79bdc80ba060d5d9fbd4e89ea4f

  • SHA256

    abf3f9e2e98ce81a5fc0d7c6d4cc3edca61f9cf508092268ee3cf41859beacbd

  • SHA512

    94b6d0f96e781fd23ded0cdee62413bc5cea6a98b3cd12bc7d0ce10c1e98caca0c9d8fd6ca1268afce968dc309d18d56b7e0d2b6147dbe06e66576b8fca2d48b

  • SSDEEP

    196608:hCaN2EA97rwH6G799+xZj6UHvOngOSZ5uDni7XMa/e5As:UvXvwH/L+5HGngXuGL/Ls

Score
3/10

Malware Config

Signatures

  • Unsigned PE 9 IoCs

    Checks for missing Authenticode signature.

Files

  • Bitsum Process Lasso Pro 14.1.1.16.7z
    .7z
  • BOA.zip
    .zip
  • Activator.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • History.txt
  • Readme.txt
  • BOP114.rar
    .rar
  • Changelog.txt
  • Patch.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • ReadMe.txt
  • Follow us on/Check out our Stuff.url
    .url
  • Follow us on/Downlaod From teamos.xyz.txt
  • Follow us on/TEAM OS.png
    .png
  • Follow us on/TEAM OS.url
    .url
  • Follow us on/TeamOS Facebook Link.url
  • Follow us on/TeamOS.xyz.url
    .url
  • Follow us on/TeamOS.xyz_Logo.png
    .png
  • Follow us on/TeamOS_FAQ.jpg
    .jpg
  • Follow us on/Torrent downlaod from teamos-hkrg.com.txt
  • Follow us on/VBuwuLG.png
    .png
  • Follow us on/WWW_TEAMOS_HKRG_COM.png
    .png
  • Follow us on/desktop.ini
  • Follow us on/for Bitcoin users.txt
  • keygen-BTCR.rar
    .rar
  • BTCR/Keygen.exe
    .exe windows:4 windows x86 arch:x86

    623081e73dd3a7bb084f1feb921477d7


    Headers

    Imports

    Sections

  • BTCR/btcr.1.png
    .png
  • BTCR/btcr.2.png
    .png
  • btcr.nfo
  • file_id.diz
  • processlassosetup32.exe
    .exe windows:4 windows x86 arch:x86

    61259b55b8912888e90f516ca08dc514


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/INetC.dll
    .dll windows:4 windows x86 arch:x86

    735e27ae3d7df8c0487e4353d04f6f28


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/LangDLL.dll
    .dll windows:4 windows x86 arch:x86

    3e8d18bb71c7ebbda2ddc2a4bb03547b


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    fc0224e99e736751432961db63a41b76


    Headers

    Imports

    Exports

    Sections

  • CPUEater.exe
    .exe windows:6 windows x86 arch:x86

    aa0b0600dd278c02bbd382c98faadc2d


    Code Sign

    Headers

    Imports

    Sections

  • Insights.exe
    .exe windows:6 windows x86 arch:x86

    39f6bbbca05442d7a9ade127b5d17c55


    Code Sign

    Headers

    Imports

    Sections

  • InstallHelper.exe
    .exe windows:6 windows x86 arch:x86

    700b4ee8d4b471917dfbed2140b3a61b


    Code Sign

    Headers

    Imports

    Sections

  • LICENSES
  • LogViewer.exe
    .exe windows:6 windows x86 arch:x86

    3eec3898c8230d3d45767d003f815460


    Code Sign

    Headers

    Imports

    Sections

  • ProcessGovernor.exe
    .exe windows:6 windows x86 arch:x86

    e02a8b2e1cc77cf648acb5f4fc3c8409


    Code Sign

    Headers

    Imports

    Sections

  • ProcessLasso.exe
    .exe windows:6 windows x86 arch:x86

    839ae340d6e35fc9bf96155ce1a829fb


    Code Sign

    Headers

    Imports

    Sections

  • ProcessLassoLauncher.exe
    .exe windows:6 windows x86 arch:x86

    0874a268dc3329ebf924001fe8266543


    Code Sign

    Headers

    Imports

    Sections

  • QuickUpgrade.exe
    .exe windows:6 windows x86 arch:x86

    4549e2a900935fad60becce804ed0a4b


    Code Sign

    Headers

    Imports

    Sections

  • ThreadRacer.exe
    .exe windows:6 windows x86 arch:x86

    7b4e48bb9869ad81aea70f89e8f1c2fc


    Code Sign

    Headers

    Imports

    Sections

  • TweakScheduler.exe
    .exe windows:6 windows x86 arch:x86

    a5d36944278451d50f55e8c3e8404747


    Code Sign

    Headers

    Imports

    Sections

  • bitsumsessionagent.exe
    .exe windows:6 windows x86 arch:x86

    d55a03fb77b615363601219c36a39348


    Code Sign

    Headers

    Imports

    Sections

  • pl-update.cmd
  • pl.cmd
  • plActivate.exe
    .exe windows:6 windows x86 arch:x86

    e743d62613765276bcd8c0831a6ad39b


    Code Sign

    Headers

    Imports

    Sections

  • pl_rsrc_bulgarian.dll
    .dll windows:6 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • pl_rsrc_chinese.dll
    .dll windows:6 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • pl_rsrc_chinese_traditional.dll
    .dll windows:6 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • pl_rsrc_english.dll
    .dll windows:6 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • pl_rsrc_finnish.dll
    .dll windows:6 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • pl_rsrc_french.dll
    .dll windows:6 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • pl_rsrc_german.dll
    .dll windows:6 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • pl_rsrc_italian.dll
    .dll windows:6 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • pl_rsrc_japanese.dll
    .dll windows:6 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • pl_rsrc_korean.dll
    .dll windows:6 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • pl_rsrc_polish.dll
    .dll windows:6 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • pl_rsrc_ptbr.dll
    .dll windows:6 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • pl_rsrc_russian.dll
    .dll windows:6 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • pl_rsrc_slovenian.dll
    .dll windows:6 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • pl_rsrc_spanish.dll
    .dll windows:6 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • srvstub.exe
    .exe windows:6 windows x86 arch:x86

    a153447d643daea0c34a5bd9cece566a


    Code Sign

    Headers

    Imports

    Sections

  • start-governor.bat
  • stop-governor.bat
  • testlasso.exe
    .exe windows:6 windows x86 arch:x86

    16c87610745f6f05af4a5bc2ed9681f6


    Code Sign

    Headers

    Imports

    Sections

  • uninstall.exe.nsis
  • vistammsc.exe
    .exe windows:6 windows x86 arch:x86

    695017cea1cdfe72d9769950086221d5


    Code Sign

    Headers

    Imports

    Sections

  • processlassosetup64.exe
    .exe windows:4 windows x86 arch:x86

    61259b55b8912888e90f516ca08dc514


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/INetC.dll
    .dll windows:4 windows x86 arch:x86

    735e27ae3d7df8c0487e4353d04f6f28


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/LangDLL.dll
    .dll windows:4 windows x86 arch:x86

    3e8d18bb71c7ebbda2ddc2a4bb03547b


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    fc0224e99e736751432961db63a41b76


    Headers

    Imports

    Exports

    Sections

  • CPUEater.exe
    .exe windows:6 windows x64 arch:x64

    944340090866ba59dc63cef60e5a3bf2


    Code Sign

    Headers

    Imports

    Sections

  • Insights.exe
    .exe windows:6 windows x64 arch:x64

    74360a6a8e7273df476c18c8a08facab


    Code Sign

    Headers

    Imports

    Sections

  • InstallHelper.exe
    .exe windows:6 windows x64 arch:x64

    6619fe2ed662a937a214a47d05711cff


    Code Sign

    Headers

    Imports

    Sections

  • LICENSES
  • LogViewer.exe
    .exe windows:6 windows x64 arch:x64

    cc36a2f18051da76ebec6151edd7c7f2


    Code Sign

    Headers

    Imports

    Sections

  • ProcessGovernor.exe
    .exe windows:6 windows x64 arch:x64

    f43d794eb38694fa05c8366f0853d4e2


    Code Sign

    Headers

    Imports

    Sections

  • ProcessLasso.exe
    .exe windows:6 windows x64 arch:x64

    56ab8670ec6af9e79861fa914a2b4a2f


    Code Sign

    Headers

    Imports

    Sections

  • ProcessLassoLauncher.exe
    .exe windows:6 windows x64 arch:x64

    57d3dfd0d74accc835dfeb836d8e80e4


    Code Sign

    Headers

    Imports

    Sections

  • QuickUpgrade.exe
    .exe windows:6 windows x64 arch:x64

    176c7b2cd2e3a0cf8b95625bf0480bdd


    Code Sign

    Headers

    Imports

    Sections

  • ThreadRacer.exe
    .exe windows:6 windows x64 arch:x64

    ab54d1be84f60bd7a46d170d7adc13ad


    Code Sign

    Headers

    Imports

    Sections

  • TweakScheduler.exe
    .exe windows:6 windows x64 arch:x64

    9c3aa8d9e5d84cdca4b3a8b5715b0107


    Code Sign

    Headers

    Imports

    Sections

  • bitsumsessionagent.exe
    .exe windows:6 windows x64 arch:x64

    a7701cdb73805c1b95559d6cb505e04d


    Code Sign

    Headers

    Imports

    Sections

  • pl-update.cmd
  • pl.cmd
  • plActivate.exe
    .exe windows:6 windows x64 arch:x64

    6165000e7b95b0dd4f16b61f6896a823


    Code Sign

    Headers

    Imports

    Sections

  • pl_rsrc_bulgarian.dll
    .dll windows:6 windows x64 arch:x64


    Code Sign

    Headers

    Sections

  • pl_rsrc_chinese.dll
    .dll windows:6 windows x64 arch:x64


    Code Sign

    Headers

    Sections

  • pl_rsrc_chinese_traditional.dll
    .dll windows:6 windows x64 arch:x64


    Code Sign

    Headers

    Sections

  • pl_rsrc_english.dll
    .dll windows:6 windows x64 arch:x64


    Code Sign

    Headers

    Sections

  • pl_rsrc_finnish.dll
    .dll windows:6 windows x64 arch:x64


    Code Sign

    Headers

    Sections

  • pl_rsrc_french.dll
    .dll windows:6 windows x64 arch:x64


    Code Sign

    Headers

    Sections

  • pl_rsrc_german.dll
    .dll windows:6 windows x64 arch:x64


    Code Sign

    Headers

    Sections

  • pl_rsrc_italian.dll
    .dll windows:6 windows x64 arch:x64


    Code Sign

    Headers

    Sections

  • pl_rsrc_japanese.dll
    .dll windows:6 windows x64 arch:x64


    Code Sign

    Headers

    Sections

  • pl_rsrc_korean.dll
    .dll windows:6 windows x64 arch:x64


    Code Sign

    Headers

    Sections

  • pl_rsrc_polish.dll
    .dll windows:6 windows x64 arch:x64


    Code Sign

    Headers

    Sections

  • pl_rsrc_ptbr.dll
    .dll windows:6 windows x64 arch:x64


    Code Sign

    Headers

    Sections

  • pl_rsrc_russian.dll
    .dll windows:6 windows x64 arch:x64


    Code Sign

    Headers

    Sections

  • pl_rsrc_slovenian.dll
    .dll windows:6 windows x64 arch:x64


    Code Sign

    Headers

    Sections

  • pl_rsrc_spanish.dll
    .dll windows:6 windows x64 arch:x64


    Code Sign

    Headers

    Sections

  • srvstub.exe
    .exe windows:6 windows x64 arch:x64

    7d94c4c800ab23365817607fc3a91c3a


    Code Sign

    Headers

    Imports

    Sections

  • start-governor.bat
  • stop-governor.bat
  • testlasso.exe
    .exe windows:6 windows x64 arch:x64

    2c5d2a94a5f323639094dc74dadda94b


    Code Sign

    Headers

    Imports

    Sections

  • uninstall.exe.nsis
  • vistammsc.exe
    .exe windows:6 windows x64 arch:x64

    0cef9d1aafb2d1c862fe37ea5858d18a


    Code Sign

    Headers

    Imports

    Sections