Overview

overview

8

Static

static

7

asiolinkpro.exe

windows7-x64

8

asiolinkpro.exe

windows10-2004-x64

4

$PLUGINSDI...ol.dll

windows7-x64

7

$PLUGINSDI...ol.dll

windows10-2004-x64

7

$PLUGINSDI...nu.dll

windows7-x64

3

$PLUGINSDI...nu.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...gs.dll

windows7-x64

3

$PLUGINSDI...gs.dll

windows10-2004-x64

3

x64/asiolink.dll

windows7-x64

5

x64/asiolink.dll

windows10-2004-x64

5

x64/asiolinktool.exe

windows7-x64

1

x64/asiolinktool.exe

windows10-2004-x64

1

x64/asiovadpro.sys

windows7-x64

1

x64/asiovadpro.sys

windows10-2004-x64

1

x64/difxapi.dll

windows7-x64

1

x64/difxapi.dll

windows10-2004-x64

1

x64/installer.exe

windows7-x64

1

x64/installer.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    asiolinkpro.exe

  • Size

    2.7MB

  • MD5

    77a6ef8a23009d74eb2c68476b5a7fcb

  • SHA1

    4560f9bb50cb423397d32bf2a7e4d102c4c96a72

  • SHA256

    a2497b1d6611668cbe47ecde6c80ae2d7239ddd3911a838fbdaa5e50c1d46c45

  • SHA512

    f71296d9d56dfeb8d636deea50972eebef1890f2bf8f3a7ac5e2b58013bc7f284203a875ad368865dea18fc8e3f4744a481681c90c645fa7c2f46790cd325913

  • SSDEEP

    49152:uvtE5G6Spft5E7ZAzpHt8/hpY9zQbDW5cny6XnFP9tjBl6NXuqCJGq92:at/62tWAzpHu/hpYX5c31P9tj0XuqCrs

Score
7/10
upx

Malware Config

Signatures

  • ACProtect 1.3x - 1.4x DLL software 1 IoCs

    Detects file using ACProtect software.

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 5 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • asiolinkpro.exe
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/AccessControl.dll
    .dll windows:5 windows x86 arch:x86


    Headers

    Exports

    Sections

  • out.upx
    .dll windows:5 windows x86 arch:x86


    Headers

    Sections

  • $PLUGINSDIR/StartMenu.dll
    .dll windows:4 windows x86 arch:x86

    a648aeaa164b592c1e8892a10400b5ae


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    2017f2acbdaa42ab3e4adeb8b4c37e7b


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/modern-header.bmp
  • $PLUGINSDIR/modern-wizard.bmp
  • $PLUGINSDIR/nsDialogs.dll
    .dll windows:4 windows x86 arch:x86

    1e2884056e655f2b7bc5a904e352fc80


    Headers

    Imports

    Exports

    Sections

  • $SYSDIR/drivers/asiovadpro.dat
  • x64/asiolink.dll
    .dll regsvr32 windows:5 windows x64 arch:x64

    7a488d24b0f35149b1f0ab4ce6c1e0e2


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • x64/asiolinktool.exe
    .exe windows:5 windows x64 arch:x64

    bb5c138931c5472916ab0c9a026394a8


    Code Sign

    Headers

    Imports

    Sections

  • x64/asiovadpro.cat
  • x64/asiovadpro.inf
  • x64/asiovadpro.sys
    .sys windows:6 windows x64 arch:x64

    e14b530f4c0acefe9a341625fd516556


    Code Sign

    Headers

    Imports

    Sections

  • x64/difxapi.dll
    .dll windows:6 windows x64 arch:x64

    fc6cd2a0e8ffb9e4e3028c8d57d848b9


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • x64/installer.exe
    .exe windows:5 windows x64 arch:x64

    6dd93457f605bcf0a858646ed4bae835


    Code Sign

    Headers

    Imports

    Sections