Overview

overview

7

Static

static

3

sagethumbs...up.exe

windows7-x64

7

sagethumbs...up.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    sagethumbs_2.0.0.23_setup.exe

  • Size

    2.1MB

  • MD5

    2af65abf462c9b3170c6e80428f90888

  • SHA1

    dd798c6ddc1fe523b0919c0d70c36b7932a67be5

  • SHA256

    705d743e28b487e34a4a7245a0dbc303a10e45ba0fd9e4da4101c8cdf506839a

  • SHA512

    5c32723bc769a2a015920df558a29415b7dcdca557be4390e278645fcc8f8f55d047cada07971b5d3b1bcf2414cd43cf4cc892ed42962689df7017c879db3dc3

  • SSDEEP

    49152:qNyB+WEmLULrpU3s90J3KfktoNMdHgJ4FV7uxB:qsBbEmgp2sq5ekaedHgeFV7G

Score
3/10

Malware Config

Signatures

  • Unsigned PE 22 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 6 IoCs
    installer

Files

  • sagethumbs_2.0.0.23_setup.exe
    .exe windows:4 windows x86 arch:x86

    59a4a44a250c4cf4f2d9de2b3fe5d95f


    Headers

    Imports

    Sections

  • $PLUGINSDIR/LangDLL.dll
    .dll windows:4 windows x86 arch:x86

    154903d617e825e7d4f76664593675fd


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/StartMenu.dll
    .dll windows:4 windows x86 arch:x86

    17fb6a8708b9c0bb2d5d8687870eb415


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    8c8a576201f68de1a3f26fc723b9f30f


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/modern-header.bmp
  • $PLUGINSDIR/modern-wizard.bmp
  • $PLUGINSDIR/nsDialogs.dll
    .dll windows:4 windows x86 arch:x86

    38e7b5c3ee58b43a91f9679e94aabd09


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsisdl.dll
    .dll windows:4 windows x86 arch:x86

    35098e8775f91723e90a28745ef6495b


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/xml.dll
    .dll windows:4 windows x86 arch:x86

    b5ed5b3a951d4443ce56e5453702d536


    Headers

    Imports

    Exports

    Sections

  • $SMPROGRAMS/$_0_/SageThumbs Online.url
  • 32/SageThumbs.dll.tmp
    .dll regsvr32 windows:5 windows x86 arch:x86

    2b668c98f9fa744112f50bceb018a73b


    Headers

    Imports

    Exports

    Sections

  • 32/libgfl340.dll.tmp
    .dll windows:4 windows x86 arch:x86

    e7c59fb74e7851c4b99a042c5673cb1a


    Headers

    Imports

    Exports

    Sections

  • 32/libgfle340.dll.tmp
    .dll windows:4 windows x86 arch:x86

    e0362ac1f694b41d8adf81d31ac80948


    Headers

    Imports

    Exports

    Sections

  • 32/sqlite3.dll.tmp
    .dll windows:5 windows x86 arch:x86

    e5c35a35ca060f6b40c75cbf1ed57d9a


    Headers

    Imports

    Exports

    Sections

  • 64/SageThumbs.dll.tmp
    .dll regsvr32 windows:6 windows x64 arch:x64

    0e62d345f341df3ebc381fea779abbb8


    Headers

    Imports

    Exports

    Sections

  • 64/libgfl340.dll.tmp
    .dll windows:5 windows x64 arch:x64

    eb1764b852287e11975f073ccefd1b0c


    Headers

    Imports

    Exports

    Sections

  • 64/libgfle340.dll.tmp
    .dll windows:5 windows x64 arch:x64

    2f0ee26c32c5199e5248d03e9a1c428f


    Headers

    Imports

    Exports

    Sections

  • 64/sqlite3.dll.tmp
    .dll windows:6 windows x64 arch:x64

    0bf880c5c8f96fd766d32a174403ef3b


    Headers

    Imports

    Exports

    Sections

  • SageThumbs.dll.pot
  • Uninst.exe
    .exe windows:4 windows x86 arch:x86

    59a4a44a250c4cf4f2d9de2b3fe5d95f


    Headers

    Imports

    Sections

  • $PLUGINSDIR/LangDLL.dll
    .dll windows:4 windows x86 arch:x86

    154903d617e825e7d4f76664593675fd


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    8c8a576201f68de1a3f26fc723b9f30f


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/modern-header.bmp
  • $PLUGINSDIR/modern-wizard.bmp
  • $PLUGINSDIR/nsDialogs.dll
    .dll windows:4 windows x86 arch:x86

    38e7b5c3ee58b43a91f9679e94aabd09


    Headers

    Imports

    Exports

    Sections

  • license.txt
  • readme.txt
  • repair.exe
    .exe windows:4 windows x86 arch:x86

    59a4a44a250c4cf4f2d9de2b3fe5d95f


    Headers

    Imports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    8c8a576201f68de1a3f26fc723b9f30f


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsDialogs.dll
    .dll windows:4 windows x86 arch:x86

    38e7b5c3ee58b43a91f9679e94aabd09


    Headers

    Imports

    Exports

    Sections