Overview

overview

10

Static

static

3

xd-AntiSpy_modern.zip

windows11-21h2-x64

1

Localizati...ry.dll

windows11-21h2-x64

1

Newtonsoft.Json.dll

windows11-21h2-x64

1

PluginInterface.dll

windows11-21h2-x64

1

lang.json

windows11-21h2-x64

3

plugins/Cl...e.json

windows11-21h2-x64

3

plugins/Fi...y.json

windows11-21h2-x64

3

plugins/Pl...er.dll

windows11-21h2-x64

1

plugins/Pl...er.ps1

windows11-21h2-x64

3

plugins/Pl...er.dll

windows11-21h2-x64

1

plugins/Pl...r.json

windows11-21h2-x64

3

plugins/Re...er.ps1

windows11-21h2-x64

8

plugins/Sn...t.json

windows11-21h2-x64

3

plugins/Un...ve.ps1

windows11-21h2-x64

8

plugins/Us...e.json

windows11-21h2-x64

3

plugins/Us...l.json

windows11-21h2-x64

3

xd-AntiSpy.exe

windows11-21h2-x64

xd-AntiSpy.png

windows11-21h2-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    xd-AntiSpy_modern.zip

  • Size

    375KB

  • MD5

    238159933f95443b3d1e14424f6008bf

  • SHA1

    8ff807098acd58f508ae8ad620c8b41a89273a08

  • SHA256

    39f5adab7ad13d1bad081cf971e0ed53c8d8ccc4b902dff4be73e4b7902eaad8

  • SHA512

    8139fdb180b27a2790b794afb1cfb3013121316981ee4df7a2fd01c7d393d4891b5d236677e4b6e58a6efcbba8f7b5f698c741b333a2a27fea231b69662b7e8c

  • SSDEEP

    6144:TsfwVUrEJxyE5tgdKhqFjuIpuFoYmyFRozXMbgGKAkaPI5siTL6UUR1Px:TsfLrE3y4gdKcgOuAzXMpjkag5DTL6UQ

Score
3/10

Malware Config

Signatures

  • Unsigned PE 5 IoCs

    Checks for missing Authenticode signature.

Files

  • xd-AntiSpy_modern.zip
    .zip
  • LocalizationLibrary.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • Newtonsoft.Json.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • PluginInterface.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • lang.json
  • plugins/Clear Icon Cache.json
  • plugins/File Extensions Visibility.json
  • plugins/PluginButler.dll
    .dll windows:4 windows x64 arch:x64


    Headers

    Sections

  • plugins/PluginButler.json
    .ps1
  • plugins/PluginDebloater.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • plugins/PluginDebloater.json
  • plugins/Restart Explorer.ps1
    .ps1
  • plugins/Snap Assist Flyout.json
  • plugins/Uninstall OneDrive.ps1
    .ps1
  • plugins/Use light theme.json
  • plugins/User Account Control.json
  • xd-AntiSpy.exe
    .exe windows:4 windows x64 arch:x64


    Headers

    Sections

  • xd-AntiSpy.png
    .png