General

  • Target

    boostware+free+internal.rar

  • Size

    8.1MB

  • MD5

    159871c7972633119a9f87aa55f84fcb

  • SHA1

    b8c4a1ca48244b5e2ad0f2d4bcaf4b93010a7824

  • SHA256

    0762bee9f4ab36d7a673d87b2e8f28c7ae03f462fe519822234867ea6bbd87e6

  • SHA512

    d76b26aa92a586cb909d1bb8328ac1c7ddd6420c0dd5d7a58f28dfdc1d8484d37b419022bb9e73a868ab82dbf05bb3a4f5fb20df35902799bdc2af3a2821ed98

  • SSDEEP

    196608:xwYmmi4U2P770kH219ZSAQEO53hLOXr9H2Yv3g2H:Opxr2P7e19WRhc9Vv3gs

Score
3/10

Malware Config

Signatures

  • Unsigned PE 19 IoCs

    Checks for missing Authenticode signature.

Files

  • boostware+free+internal.rar
    .rar

    Password: boostware ud

  • boostware free internal/HWiNFO32.7z
    .7z

    Password: boostware ud

  • HWiNFO32/BENCH.DLL
    .dll windows:4 windows x86 arch:x86

    Password: boostware ud

    d9b614ded403577bde60a663d4547144


    Headers

    Imports

    Exports

    Sections

  • HWiNFO32/HW32inst.EXE
    .exe windows:4 windows x86 arch:x86

    Password: boostware ud

    e1248ac64510058f5155efa538c1b5d5


    Headers

    Imports

    Sections

  • HWiNFO32/HWiNFO32.CHM
    .chm
  • HWiNFO32/HWiNFO32.DAT
  • HWiNFO32/HWiNFO32.EXE
    .exe windows:4 windows x86 arch:x86

    Password: boostware ud


    Code Sign

    Headers

    Sections

  • HWiNFO32/HWiNFO32.INI
  • HWiNFO32/HWiNFO32.SYS
    .sys windows:5 windows x86 arch:x86

    90e05ca6b367f1157033f66442d3b15f


    Code Sign

    Headers

    Imports

    Sections

  • HWiNFO32/HWiNFO32.VXD
  • HWiNFO32/HWiNFO64A.SYS
    .sys windows:5 windows x64 arch:x64

    2d54679459ee27533764386ed4fb495d


    Code Sign

    Headers

    Imports

    Sections

  • HWiNFO32/HWiNFO64I.SYS
  • HWiNFO32/History.TXT
  • HWiNFO32/Register/HWiNFO32-HomeUser-Register.EXE
    .exe windows:4 windows x86 arch:x86

    Password: boostware ud

    fb9e7623ec1af4b6419332e642bd1122


    Headers

    Imports

    Sections

  • HWiNFO32/Register/HWiNFO32-Standard-Register.EXE
    .exe windows:4 windows x86 arch:x86

    Password: boostware ud

    fb9e7623ec1af4b6419332e642bd1122


    Headers

    Imports

    Sections

  • HWiNFO32/unins000.dat
  • HWiNFO32/unins000.exe
    .exe windows:1 windows x86 arch:x86

    Password: boostware ud


    Headers

    Sections

  • HWiNFO32/vulndriverbs.rar
    .rar

    Password: boostware ud

  • BENCH.DLL
    .dll windows:4 windows x86 arch:x86

    d9b614ded403577bde60a663d4547144


    Headers

    Imports

    Exports

    Sections

  • HW32inst.EXE
    .exe windows:4 windows x86 arch:x86

    e1248ac64510058f5155efa538c1b5d5


    Headers

    Imports

    Sections

  • HWiNFO32.CHM
    .chm
  • HWiNFO32.DAT
  • HWiNFO32.EXE
    .exe windows:4 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • HWiNFO32.INI
  • HWiNFO32.SYS
    .sys windows:5 windows x86 arch:x86

    90e05ca6b367f1157033f66442d3b15f


    Code Sign

    Headers

    Imports

    Sections

  • HWiNFO32.VXD
  • HWiNFO64A.SYS
    .sys windows:5 windows x64 arch:x64

    2d54679459ee27533764386ed4fb495d


    Code Sign

    Headers

    Imports

    Sections

  • HWiNFO64I.SYS
  • History.TXT
  • Register/HWiNFO32-HomeUser-Register.EXE
    .exe windows:4 windows x86 arch:x86

    fb9e7623ec1af4b6419332e642bd1122


    Headers

    Imports

    Sections

  • Register/HWiNFO32-Standard-Register.EXE
    .exe windows:4 windows x86 arch:x86

    fb9e7623ec1af4b6419332e642bd1122


    Headers

    Imports

    Sections

  • unins000.dat
  • unins000.exe
    .exe windows:1 windows x86 arch:x86


    Headers

    Sections

  • boostware free internal/HWiNFO32/HWiNFO32/BENCH.DLL
    .dll windows:4 windows x86 arch:x86

    d9b614ded403577bde60a663d4547144


    Headers

    Imports

    Exports

    Sections

  • boostware free internal/HWiNFO32/HWiNFO32/HW32inst.EXE
    .exe windows:4 windows x86 arch:x86

    e1248ac64510058f5155efa538c1b5d5


    Headers

    Imports

    Sections

  • boostware free internal/HWiNFO32/HWiNFO32/HWiNFO32.CHM
    .chm
  • boostware free internal/HWiNFO32/HWiNFO32/HWiNFO32.DAT
  • boostware free internal/HWiNFO32/HWiNFO32/HWiNFO32.EXE
    .exe windows:4 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • boostware free internal/HWiNFO32/HWiNFO32/HWiNFO32.INI
  • boostware free internal/HWiNFO32/HWiNFO32/HWiNFO32.SYS
    .sys windows:5 windows x86 arch:x86

    90e05ca6b367f1157033f66442d3b15f


    Code Sign

    Headers

    Imports

    Sections

  • boostware free internal/HWiNFO32/HWiNFO32/HWiNFO32.VXD
  • boostware free internal/HWiNFO32/HWiNFO32/HWiNFO64A.SYS
    .sys windows:5 windows x64 arch:x64

    2d54679459ee27533764386ed4fb495d


    Code Sign

    Headers

    Imports

    Sections

  • boostware free internal/HWiNFO32/HWiNFO32/HWiNFO64I.SYS
  • boostware free internal/HWiNFO32/HWiNFO32/History.TXT
  • boostware free internal/HWiNFO32/HWiNFO32/Register/HWiNFO32-HomeUser-Register.EXE
    .exe windows:4 windows x86 arch:x86

    fb9e7623ec1af4b6419332e642bd1122


    Headers

    Imports

    Sections

  • boostware free internal/HWiNFO32/HWiNFO32/Register/HWiNFO32-Standard-Register.EXE
    .exe windows:4 windows x86 arch:x86

    fb9e7623ec1af4b6419332e642bd1122


    Headers

    Imports

    Sections

  • boostware free internal/HWiNFO32/HWiNFO32/unins000.dat
  • boostware free internal/HWiNFO32/HWiNFO32/unins000.exe
    .exe windows:1 windows x86 arch:x86


    Headers

    Sections

  • boostware free internal/HWiNFO32/HWiNFO32/vulndriverbs.rar
    .rar
  • boostware free internal/RTCore64_Vulnerability.exe
    .exe windows:6 windows x64 arch:x64

    01414c92e9f3e8521a4976e6e90d776a


    Headers

    Imports

    Sections

  • boostware free internal/cheat.dll
    .dll windows:6 windows x64 arch:x64

    16b0e72dd314c5e613a87d11d12a9024


    Headers

    Imports

    Sections

  • boostware free internal/loader.exe
    .exe windows:6 windows x64 arch:x64

    78ecd38fbdc526aa2b8b675c0c3d254d


    Headers

    Imports

    Sections

  • boostware free internal/meme.sys
    .dll windows:6 windows x64 arch:x64

    4df383031d97e37973f1182dee5355bb


    Headers

    Imports

    Sections