Overview

overview

6

Static

static

3

DXGIODScreenshot.dll

windows7-x64

3

DXGIODScreenshot.dll

windows10-2004-x64

3

Lightbase.dll

windows7-x64

3

Lightbase.dll

windows10-2004-x64

3

Lightshot.dll

windows7-x64

3

Lightshot.dll

windows10-2004-x64

3

Lightshot.exe

windows7-x64

3

Lightshot.exe

windows10-2004-x64

3

learnmore.url

windows7-x64

6

learnmore.url

windows10-2004-x64

3

learnmore_ru.url

windows7-x64

6

learnmore_ru.url

windows10-2004-x64

3

sqlite3.dll

windows7-x64

1

sqlite3.dll

windows10-2004-x64

1

uploader.dll

windows7-x64

3

uploader.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    c900638bd863ffa641b1fa77df432d9c85faeca2a20914fd1fc8247a6653a7b3.zip

  • Size

    1.3MB

  • MD5

    0bfbbff8e9c6a6a506199fc1d01ba0f0

  • SHA1

    340a0093745328a28eb2476b6f6472202f7b9290

  • SHA256

    c900638bd863ffa641b1fa77df432d9c85faeca2a20914fd1fc8247a6653a7b3

  • SHA512

    d4cf5cd0e54dd8bebc3e119a772fd429543ad6acc9ebfea13360a9956f1f44a0be3bb41652e28819b134f117264bbcff9b65e05cd39c73b75deeb78a4b53ee6a

  • SSDEEP

    24576:1KmFHFOsTXoEhmjDHCre5XiQ6OOLCTj8Y8qoFiWimInX9Mrl4:1KmFHYwoBjLCrlQ6OOLCTj8liWoX9MrW

Score
3/10

Malware Config

Signatures

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • c900638bd863ffa641b1fa77df432d9c85faeca2a20914fd1fc8247a6653a7b3.zip
    .zip
  • DXGIODScreenshot.dll
    .dll windows:5 windows x86 arch:x86

    8e55ea89e532d567e141d1a61186f294


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Lightbase.dll
    .dll windows:5 windows x86 arch:x86

    6a76fa6ec8daa78854b0e42a457b5f9e


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Lightshot.dll
    .dll windows:6 windows x86 arch:x86

    7f737654202df3caad6fbc2347630fdc


    Headers

    Imports

    Exports

    Sections

  • Lightshot.exe
    .exe windows:5 windows x86 arch:x86

    2f0381ca527366dde0bbef4148ecb54a


    Code Sign

    Headers

    Imports

    Sections

  • learnmore.url
  • learnmore_ru.url
  • locales/ar.txt
  • locales/be.txt
  • locales/bg.txt
  • locales/bn-BD.txt
  • locales/bs.txt
  • locales/ca.txt
  • locales/cs.txt
  • locales/da.txt
  • locales/de.txt
  • locales/el.txt
  • locales/en.txt
  • locales/es.txt
  • locales/et.txt
  • locales/fa.txt
  • locales/fi.txt
  • locales/fr.txt
  • locales/gl.txt
  • locales/he.txt
  • locales/hr.txt
  • locales/hu.txt
  • locales/hy.txt
  • locales/id.txt
  • locales/is.txt
  • locales/it.txt
  • locales/ja.txt
  • locales/ka.txt
  • locales/ko.txt
  • locales/ku.txt
  • locales/lt.txt
  • locales/lv.txt
  • locales/mk.txt
  • locales/nb-NO.txt
  • locales/nl.txt
  • locales/pl.txt
  • locales/pt-PT.txt
  • locales/pt-br.txt
  • locales/ro.txt
  • locales/ru.txt
  • locales/sk.txt
  • locales/sl.txt
  • locales/sq.txt
  • locales/sr-Cyrl.txt
  • locales/sr.txt
  • locales/sv.txt
  • locales/th.txt
  • locales/tr.txt
  • locales/uk.txt
  • locales/ur.txt
  • locales/vi.txt
  • locales/zh-CN.txt
  • locales/zh-TW.txt
  • sqlite3.dll
  • uploader.dll
    .dll windows:5 windows x86 arch:x86

    3f0ea857b844fec98c79341d21783cfa


    Code Sign

    Headers

    Imports

    Exports

    Sections