General

  • Target

    ptalarm-setup.exe

  • Size

    1.1MB

  • MD5

    ffd08770a1742dbf9290b155af63b9b9

  • SHA1

    ef706e234a08f53422c8a95ccefd8482c8420bf6

  • SHA256

    2247643172fe19881bbaabf65f89598584a30f2b7db2dbe7ea9946b5212bb6b0

  • SHA512

    db754775988e64e997971ff7622246424a9eb3665bb536192c46c2fd7d27d64e78b7118f27f759ba734fbb386094b62034f2fea21299898379492ee084d4d3fa

  • SSDEEP

    24576:Y7Ad6yIZ1/NpI1iaA7XFu3NpgzY6V+pA0cYHRLEm8+a7TPZg:YUdyZ1XIwaARu3NpgzY2CtcYHRLEmtiG

Score
3/10

Malware Config

Signatures

  • Unsigned PE 9 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs

Files

  • ptalarm-setup.exe
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/AccessControl.dll
    .dll windows:4 windows x86 arch:x86

    d424185394c507e5a7ca428de07aeda0


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/Dialer.dll
    .dll windows:4 windows x86 arch:x86

    b34e411b555c469d4deeeb6647de46ee


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/GetVersion.dll
    .dll windows:4 windows x86 arch:x86

    0d95be3e680fa7286087b90b308cff72


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/InstallOptions.dll
    .dll windows:4 windows x86 arch:x86

    b1cd0d78f652ce5fc63f0879371af012


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/NSISdl.dll
    .dll windows:4 windows x86 arch:x86

    9cce555dd3ff1b6c7dc92d64c794c51a


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/StartMenu.dll
    .dll windows:4 windows x86 arch:x86

    7868cd55f358bfb360f9eb8ce1512ca0


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    4ec328f99bdd944fc98d8a5cf11f7a62


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/User.ini
  • $PLUGINSDIR/UserInfo.dll
    .dll windows:4 windows x86 arch:x86

    6bc108eed3ca99f68adee56e9c99fac6


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/ioSpecial.ini
  • $PLUGINSDIR/modern-wizard.bmp
  • $R0
    .dll regsvr32 windows:4 windows x86 arch:x86

    ce21923007044b1701a0b2dc4ac9396b


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • $R2/NSIS.Library.RegTool.v2.$_13_.exe
    .exe windows:4 windows x86 arch:x86

    a56a9c58ddb2b2da8fde66551747ce70


    Headers

    Imports

    Sections