General

  • Target

    x64_x32_installer__v3.3.6.zip

  • Size

    32.7MB

  • MD5

    1b3a90a6e94b4dece129fa9110020b7a

  • SHA1

    a165fa55d1df0301dead3373df1637264e954f72

  • SHA256

    c89063f521f5a8f62bb40255e1671e519e43bfc6c0117d8d1fd5213f3968d95d

  • SHA512

    c02a98a9f059a8999fe5c0e19d3bdfd66f00254f81e64eccd799f3348ae9b6134fc13e754e03732d883d54be390a182ca33f0783238cb283895ef1d294d112b4

  • SSDEEP

    786432:zbIiwXbTr//DcKljLiDOIWwWwsJzXMHd2CFgDVFFwv1TW/e:zAnLbTw082EM741TW2

Score
3/10

Malware Config

Signatures

  • Unsigned PE 14 IoCs

    Checks for missing Authenticode signature.

Files

  • x64_x32_installer__v3.3.6.zip
    .zip
  • csplte/ci.dll
    .dll windows:10 windows x64 arch:x64

    90324bcf16c81173f1e50a14cc4a9394


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • csplte/cic.dll
    .dll regsvr32 windows:10 windows x64 arch:x64

    eccc8fd026719234015a768136c19abf


    Headers

    Imports

    Exports

    Sections

  • csplte/cryptuiwizard.dll
    .dll windows:10 windows x64 arch:x64

    002d04fadf540721fe84618e5b2a0a7d


    Headers

    Imports

    Exports

    Sections

  • csplte/csplte.dll
    .dll windows:10 windows x64 arch:x64

    1f1e5237e027eef55253b7b50c9e20fc


    Headers

    Imports

    Exports

    Sections

  • els/Geolocation.dll
    .dll windows:10 windows x64 arch:x64

    e1712f69fda04d5127f0fcc1152f497c


    Headers

    Imports

    Exports

    Sections

  • els/efswrt.dll
    .dll windows:10 windows x64 arch:x64

    00e2795a249257463c9bbe96064306a3


    Headers

    Imports

    Exports

    Sections

  • els/els.dll
    .dll regsvr32 windows:10 windows x64 arch:x64

    a26a8976f1eb6d8517d153ff05635a24


    Headers

    Imports

    Exports

    Sections

  • els/gamingtcui.dll
    .dll windows:10 windows x64 arch:x64

    b875306a93519eac7096ce393f8517c5


    Headers

    Imports

    Exports

    Sections

  • msdtcprx/msdtcprx.dll
    .dll regsvr32 windows:10 windows x64 arch:x64

    efef745ebb173063c954f12678bfe1f0


    Headers

    Imports

    Exports

    Sections

  • msdtcprx/msfeeds.dll
    .dll windows:10 windows x64 arch:x64

    84f3ccddd61f29542a0e95502e8805d7


    Headers

    Imports

    Exports

    Sections

  • msdtcprx/radardt.dll
    .dll windows:10 windows x64 arch:x64

    a7ab6456b76ea9f56223aa283087a8bb


    Headers

    Imports

    Exports

    Sections

  • wmvdspa/WiFiConfigSP.dll
    .dll windows:10 windows x64 arch:x64

    5f18af98bc11809e50a7d0409b5419b2


    Headers

    Imports

    Exports

    Sections

  • wmvdspa/WorkfoldersControl.dll
    .dll windows:10 windows x64 arch:x64

    dc98a6c982a0361be8f4988ca140ef61


    Headers

    Imports

    Exports

    Sections

  • wmvdspa/wiadss.dll
    .dll windows:10 windows x64 arch:x64

    d86673345bd1e2ecb5430d55be9f4acc


    Headers

    Imports

    Exports

    Sections

  • wmvdspa/wmvdspa.dll
    .dll regsvr32 windows:10 windows x64 arch:x64

    c9c05e9a741ec8e9b2bd7a4ec9dbb39b


    Headers

    Imports

    Exports

    Sections

  • x64_x32_installer__v3.3.6.msi
    .msi