General

  • Target

    x64_x32_installer__v4.0.7.zip

  • Size

    36.1MB

  • MD5

    9feb6643beab7e297d3ed87b2a419c18

  • SHA1

    b3a06338644232a3c8a95d9bff9bc193d4ef78d8

  • SHA256

    f18759a9594173bce6f3e9f68a3efd59ac811544bf2767081f592466e9cd24e7

  • SHA512

    796864f20e0b8523ce98c3bc586930c7d7cfd18b1d31f4f190fbefddb0ba2628d3f15838eeb39c545409623bb56feba6ee0f97c7f990f9ff95575120aa99064c

  • SSDEEP

    786432:TL9kkAzbG0wmlFfV/l9Qmf5xupM1iZ2wyBLOynJN9Vrf50WV8SdEpun:QphxN+2ZOKP9V1LJs8

Score
3/10

Malware Config

Signatures

  • Unsigned PE 10 IoCs

    Checks for missing Authenticode signature.

Files

  • x64_x32_installer__v4.0.7.zip
    .zip

    Password: as

  • dps/XblGameSave.dll
    .dll windows:10 windows x64 arch:x64

    Password: as

    7e80c7b4f275c9ea605678d912adb2c4


    Headers

    Imports

    Exports

    Sections

  • dps/dpapisrv.dll
    .dll windows:10 windows x64 arch:x64

    Password: as

    ee8dd9c021c5e38224032b7f773aec78


    Headers

    Imports

    Exports

    Sections

  • dps/wwanmm.dll
    .dll windows:10 windows x64 arch:x64

    Password: as

    085d30f77f85e03dcd40724f5435c85f


    Headers

    Imports

    Exports

    Sections

  • enterprisecsps/energy.dll
    .dll windows:10 windows x64 arch:x64

    Password: as

    5a6c1bb2d4cdfc861b6d3485be83e4ca


    Headers

    Imports

    Exports

    Sections

  • enterprisecsps/enterprisecsps.dll
    .dll windows:10 windows x64 arch:x64

    Password: as

    ffba186bc5ad0ddf6c81eb2959a5a51b


    Headers

    Imports

    Exports

    Sections

  • enterprisecsps/filemgmt.dll
    .dll regsvr32 windows:10 windows x64 arch:x64

    Password: as

    89122c235f124c1d01afc6dc2575d168


    Headers

    Imports

    Exports

    Sections

  • kdnet/kernel32.dll
    .dll windows:10 windows x64 arch:x64

    Password: as

    504648a47926611a0869d2a6c53023c8


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • kdnet/ngccredprov.dll
    .dll windows:10 windows x64 arch:x64

    Password: as

    991296ebc87d927e456b677ae4022ab5


    Headers

    Imports

    Exports

    Sections

  • ucrtbase/SessEnv.dll
    .dll windows:10 windows x64 arch:x64

    c252150e2ab272715077e6f59b74980d


    Headers

    Imports

    Exports

    Sections

  • ucrtbase/twinui.appcore.dll
    .dll windows:10 windows x64 arch:x64

    b1df93fdba8772075c2fa0f0b3a4490e


    Headers

    Imports

    Exports

    Sections

  • ucrtbase/ucrtbase.dll
    .dll windows:10 windows x64 arch:x64

    405cde0fc80c30dcc3d783173dbd4143


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • vbsapi/Windows.Media.Streaming.dll
    .dll windows:10 windows x64 arch:x64

    aa6331e18dc86e4a12d7f6a1740bea26


    Headers

    Imports

    Exports

    Sections

  • x64_x32_installer__v4.0.7.msi
    .msi