Overview

overview

10

Static

static

5

Setup.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Setup_Pswd_1234.rar

  • Size

    26.3MB

  • MD5

    cc0f8250c459fa17cb0c62d17ca0b16e

  • SHA1

    a63442b4c7a21009206cf0f175935853b2ad3250

  • SHA256

    da1430adcfc60f0ba6c3916b066fd3eec155c2d58667c173d4905e005ae9b40d

  • SHA512

    31f7e896fdceea6271c06b1f5869d71d3ac9e5c492c1a7d50df12c0bc5864ec8deda999c36fff21d9b9c7bd039e4684591a734567ac1402bef7b71a382289540

  • SSDEEP

    393216:r6hYhDrHCMUvcO/mCFwmDSQsndRjr+fo3BeaAnAIg8cpolWClYtx0N9OUR12w6uz:r+Yh2UgHFwjdVSmBMnXXCa18w4Y

Score
5/10
pdf

Malware Config

Signatures

  • Malformed data in PDF

    A PDF can contain malformed data to evade detection

    pdf

Files

  • Setup_Pswd_1234.rar
    .rar

    Password: 1234

  • Setup.exe
    .exe windows:5 windows x86 arch:x86

    Password: 1234

    fb0503773e387063d54a2f31e55cadfc


    Code Sign

    Headers

    Imports

    Sections

  • app.dll
  • bootstrap/IDTemplates/DEU/AdobeID.pdf
    .pdf
  • bootstrap/IDTemplates/DEU/DefaultID.pdf
    .pdf
  • bootstrap/IDTemplates/ENU/AdobeID.pdf
    .pdf

    Password: 1234

  • bootstrap/IDTemplates/ENU/DefaultID.pdf
    .pdf

    Password: 1234

  • bootstrap/UIThemes/DarkTheme.acrotheme
  • bootstrap/UIThemes/LightTheme.acrotheme
  • bootstrap/UIThemes/langs/Croatian.ini
  • bootstrap/UIThemes/langs/Danish.ini
  • bootstrap/UIThemes/langs/English.ini
  • bootstrap/UIThemes/langs/Finnish.ini
  • bootstrap/UIThemes/langs/Hebrew.ini
  • bootstrap/UIThemes/langs/Hungarian.ini
  • bootstrap/UIThemes/langs/Indonesian.ini
  • bootstrap/UIThemes/langs/Japanese.ini
  • bootstrap/UIThemes/langs/Kazakh.ini
  • bootstrap/UIThemes/langs/Korean.ini
  • bootstrap/UIThemes/langs/Kurdish.ini
  • bootstrap/UIThemes/langs/Norwegian.ini
  • bootstrap/UIThemes/langs/SimpChinese.ini
  • bootstrap/UIThemes/langs/Sinhala.ini
  • bootstrap/UIThemes/langs/Slovak.ini
  • bootstrap/UIThemes/langs/Swedish.ini
  • bootstrap/UIThemes/langs/Thai.ini
  • bootstrap/UIThemes/langs/TradChinese.ini
  • bootstrap/UIThemes/langs/Ukrainian.ini
  • bootstrap/UIThemes/langs/UyghurLatin.ini
  • bootstrap/UIThemes/langs/Uzbek.ini
  • bootstrap/UIThemes/langs/Vietnamese.ini
  • bootstrap/UIThemes/locales/am.pak
  • bootstrap/UIThemes/locales/am.pak.info
  • bootstrap/UIThemes/locales/ar.pak
  • bootstrap/UIThemes/locales/ar.pak.info
  • bootstrap/UIThemes/locales/bg.pak
  • bootstrap/UIThemes/locales/bg.pak.info
  • bootstrap/UIThemes/locales/bn.pak
  • bootstrap/UIThemes/locales/bn.pak.info
  • bootstrap/UIThemes/locales/ca.pak
  • bootstrap/UIThemes/locales/ca.pak.info
  • bootstrap/UIThemes/locales/cs.pak
  • bootstrap/UIThemes/locales/cs.pak.info
  • bootstrap/UIThemes/locales/da.pak
  • bootstrap/UIThemes/locales/da.pak.info
  • bootstrap/UIThemes/locales/de.pak
  • bootstrap/UIThemes/locales/de.pak.info
  • bootstrap/UIThemes/locales/el.pak
  • bootstrap/UIThemes/locales/el.pak.info
  • bootstrap/UIThemes/locales/en-GB.pak
  • bootstrap/UIThemes/locales/en-GB.pak.info
  • bootstrap/UIThemes/locales/en-US.pak
  • bootstrap/UIThemes/locales/en-US.pak.info
  • bootstrap/UIThemes/locales/es-419.pak
  • bootstrap/UIThemes/locales/es-419.pak.info
  • bootstrap/UIThemes/locales/es.pak
  • bootstrap/UIThemes/locales/es.pak.info
  • bootstrap/UIThemes/locales/et.pak
  • bootstrap/UIThemes/locales/et.pak.info
  • bootstrap/UIThemes/locales/fa.pak
  • bootstrap/UIThemes/locales/fa.pak.info
  • bootstrap/UIThemes/locales/fi.pak
  • bootstrap/UIThemes/locales/fi.pak.info
  • bootstrap/UIThemes/locales/fil.pak
  • bootstrap/UIThemes/locales/fil.pak.info
  • bootstrap/UIThemes/locales/fr.pak
  • bootstrap/UIThemes/locales/fr.pak.info
  • bootstrap/UIThemes/locales/gu.pak
  • bootstrap/UIThemes/locales/gu.pak.info
  • bootstrap/UIThemes/locales/he.pak
  • bootstrap/UIThemes/locales/he.pak.info
  • bootstrap/UIThemes/locales/hi.pak
  • bootstrap/UIThemes/locales/hi.pak.info
  • bootstrap/UIThemes/locales/hr.pak
  • bootstrap/UIThemes/locales/hr.pak.info
  • bootstrap/UIThemes/locales/hu.pak
  • bootstrap/UIThemes/locales/hu.pak.info
  • bootstrap/UIThemes/locales/id.pak
  • bootstrap/UIThemes/locales/id.pak.info
  • bootstrap/UIThemes/locales/it.pak
  • bootstrap/UIThemes/locales/it.pak.info
  • bootstrap/UIThemes/locales/ja.pak
  • bootstrap/UIThemes/locales/ja.pak.info
  • bootstrap/UIThemes/locales/kn.pak
  • bootstrap/UIThemes/locales/kn.pak.info
  • bootstrap/UIThemes/locales/ko.pak
  • bootstrap/UIThemes/locales/ko.pak.info
  • bootstrap/UIThemes/locales/lt.pak
  • bootstrap/UIThemes/locales/lt.pak.info
  • bootstrap/UIThemes/locales/lv.pak
  • bootstrap/UIThemes/locales/lv.pak.info
  • bootstrap/UIThemes/locales/ml.pak
  • bootstrap/UIThemes/locales/ml.pak.info
  • bootstrap/UIThemes/locales/mr.pak
  • bootstrap/UIThemes/locales/mr.pak.info
  • bootstrap/UIThemes/locales/ms.pak
  • bootstrap/UIThemes/locales/ms.pak.info
  • bootstrap/UIThemes/locales/nb.pak
  • bootstrap/UIThemes/locales/nb.pak.info
  • bootstrap/UIThemes/locales/nl.pak
  • bootstrap/UIThemes/locales/nl.pak.info
  • bootstrap/UIThemes/locales/pl.pak
  • bootstrap/UIThemes/locales/pl.pak.info
  • bootstrap/UIThemes/locales/pt-BR.pak
  • bootstrap/UIThemes/locales/pt-BR.pak.info
  • bootstrap/UIThemes/locales/pt-PT.pak
  • bootstrap/UIThemes/locales/pt-PT.pak.info
  • bootstrap/UIThemes/locales/ro.pak
  • bootstrap/UIThemes/locales/ro.pak.info
  • bootstrap/UIThemes/locales/ru.pak
  • bootstrap/UIThemes/locales/ru.pak.info
  • bootstrap/UIThemes/locales/sk.pak
  • bootstrap/UIThemes/locales/sk.pak.info
  • bootstrap/UIThemes/locales/sl.pak
  • bootstrap/UIThemes/locales/sl.pak.info
  • bootstrap/UIThemes/locales/sr.pak
  • bootstrap/UIThemes/locales/sr.pak.info
  • bootstrap/UIThemes/locales/sv.pak
  • bootstrap/UIThemes/locales/sv.pak.info
  • bootstrap/UIThemes/locales/sw.pak
  • bootstrap/UIThemes/locales/sw.pak.info
  • bootstrap/UIThemes/locales/ta.pak
  • bootstrap/UIThemes/locales/ta.pak.info
  • bootstrap/UIThemes/locales/te.pak
  • bootstrap/UIThemes/locales/te.pak.info
  • bootstrap/UIThemes/locales/th.pak
  • bootstrap/UIThemes/locales/th.pak.info
  • bootstrap/UIThemes/locales/tr.pak
  • bootstrap/UIThemes/locales/tr.pak.info
  • bootstrap/UIThemes/locales/uk.pak
  • bootstrap/UIThemes/locales/uk.pak.info
  • bootstrap/UIThemes/locales/vi.pak
  • bootstrap/UIThemes/locales/vi.pak.info
  • bootstrap/UIThemes/locales/zh-CN.pak
  • bootstrap/UIThemes/locales/zh-CN.pak.info
  • bootstrap/UIThemes/locales/zh-TW.pak
  • bootstrap/UIThemes/locales/zh-TW.pak.info
  • bootstrap/hppdgenio.sys
    .sys windows:6 windows x64 arch:x64

    dfec8bfa180807bafcc9ae796aec0564


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • bootstrap/lang/cs-CZ/bdsubwiz.txtui
    .xml
  • bootstrap/lang/cs-CZ/bdvpnapp.txtui
    .xml
  • bootstrap/lang/cs-CZ/bdvpnservice.txtui
    .xml
  • bootstrap/lang/cs-CZ/bdvpnsystray.txtui
    .xml
  • bootstrap/lang/cs-CZ/bdvpnuiapp.txtui
    .xml
  • bootstrap/lang/de-DE/bdsubwiz.txtui
    .xml
  • bootstrap/lang/de-DE/bdvpnapp.txtui
    .xml
  • bootstrap/lang/de-DE/bdvpnservice.txtui
    .xml
  • bootstrap/lang/de-DE/bdvpnsystray.txtui
    .xml
  • bootstrap/lang/de-DE/bdvpnuiapp.txtui
    .xml
  • bootstrap/lang/el-GR/bdsubwiz.txtui
    .xml
  • bootstrap/lang/el-GR/bdvpnapp.txtui
    .xml
  • bootstrap/lang/el-GR/bdvpnservice.txtui
    .xml
  • bootstrap/lang/el-GR/bdvpnsystray.txtui
    .xml
  • bootstrap/lang/el-GR/bdvpnuiapp.txtui
    .xml
  • bootstrap/lang/en-US/bdsubwiz.txtui
    .xml
  • bootstrap/lang/en-US/bdvpnapp.txtui
    .xml
  • bootstrap/lang/en-US/bdvpnservice.txtui
    .xml
  • bootstrap/lang/en-US/bdvpnsystray.txtui
    .xml
  • bootstrap/lang/en-US/bdvpnuiapp.txtui
    .xml
  • bootstrap/lang/es-ES/bdsubwiz.txtui
    .xml
  • bootstrap/lang/es-ES/bdvpnapp.txtui
    .xml
  • bootstrap/lang/es-ES/bdvpnservice.txtui
    .xml
  • bootstrap/lang/es-ES/bdvpnsystray.txtui
    .xml
  • bootstrap/lang/es-ES/bdvpnuiapp.txtui
    .xml
  • bootstrap/lang/fr-FR/bdsubwiz.txtui
    .xml
  • bootstrap/lang/fr-FR/bdvpnapp.txtui
    .xml
  • bootstrap/lang/fr-FR/bdvpnservice.txtui
    .xml
  • bootstrap/lang/fr-FR/bdvpnsystray.txtui
    .xml
  • bootstrap/lang/fr-FR/bdvpnuiapp.txtui
    .xml
  • bootstrap/lang/hu-HU/bdsubwiz.txtui
    .xml
  • bootstrap/lang/hu-HU/bdvpnapp.txtui
    .xml
  • bootstrap/lang/hu-HU/bdvpnservice.txtui
    .xml
  • bootstrap/lang/hu-HU/bdvpnsystray.txtui
    .xml
  • bootstrap/lang/hu-HU/bdvpnuiapp.txtui
    .xml
  • bootstrap/lang/it-IT/bdsubwiz.txtui
    .xml
  • bootstrap/lang/it-IT/bdvpnapp.txtui
    .xml
  • bootstrap/lang/it-IT/bdvpnservice.txtui
    .xml
  • bootstrap/lang/it-IT/bdvpnsystray.txtui
    .xml
  • bootstrap/lang/it-IT/bdvpnuiapp.txtui
    .xml
  • bootstrap/lang/ja-JP/bdsubwiz.txtui
    .xml
  • bootstrap/lang/ja-JP/bdvpnapp.txtui
    .xml
  • bootstrap/lang/ja-JP/bdvpnservice.txtui
    .xml
  • bootstrap/lang/ja-JP/bdvpnsystray.txtui
    .xml
  • bootstrap/lang/ja-JP/bdvpnuiapp.txtui
    .xml
  • bootstrap/lang/ko-KR/bdsubwiz.txtui
    .xml
  • bootstrap/lang/ko-KR/bdvpnapp.txtui
    .xml
  • bootstrap/lang/ko-KR/bdvpnservice.txtui
    .xml
  • bootstrap/lang/ko-KR/bdvpnsystray.txtui
    .xml
  • bootstrap/lang/ko-KR/bdvpnuiapp.txtui
    .xml
  • bootstrap/lang/nl-NL/bdsubwiz.txtui
    .xml
  • bootstrap/lang/nl-NL/bdvpnapp.txtui
    .xml
  • bootstrap/lang/nl-NL/bdvpnservice.txtui
    .xml
  • bootstrap/lang/nl-NL/bdvpnsystray.txtui
    .xml
  • bootstrap/lang/nl-NL/bdvpnuiapp.txtui
    .xml
  • bootstrap/lang/pl-PL/bdsubwiz.txtui
    .xml
  • bootstrap/lang/pl-PL/bdvpnapp.txtui
    .xml
  • bootstrap/lang/pl-PL/bdvpnservice.txtui
    .xml
  • bootstrap/lang/pl-PL/bdvpnsystray.txtui
    .xml
  • bootstrap/lang/pl-PL/bdvpnuiapp.txtui
    .xml
  • bootstrap/lang/pt-BR/bdsubwiz.txtui
    .xml
  • bootstrap/lang/pt-BR/bdvpnapp.txtui
    .xml
  • bootstrap/lang/pt-BR/bdvpnservice.txtui
    .xml
  • bootstrap/lang/pt-BR/bdvpnsystray.txtui
    .xml
  • bootstrap/lang/pt-BR/bdvpnuiapp.txtui
    .xml
  • bootstrap/lang/pt-PT/bdsubwiz.txtui
    .xml
  • bootstrap/lang/pt-PT/bdvpnapp.txtui
    .xml
  • bootstrap/lang/pt-PT/bdvpnservice.txtui
    .xml
  • bootstrap/lang/pt-PT/bdvpnsystray.txtui
    .xml
  • bootstrap/lang/pt-PT/bdvpnuiapp.txtui
    .xml
  • bootstrap/lang/ro-RO/bdsubwiz.txtui
    .xml
  • bootstrap/lang/ro-RO/bdvpnapp.txtui
    .xml
  • bootstrap/lang/ro-RO/bdvpnservice.txtui
    .xml
  • bootstrap/lang/ro-RO/bdvpnsystray.txtui
    .xml
  • bootstrap/lang/ro-RO/bdvpnuiapp.txtui
    .xml
  • bootstrap/lang/ru-RU/bdsubwiz.txtui
    .xml
  • bootstrap/lang/ru-RU/bdvpnapp.txtui
    .xml
  • bootstrap/lang/ru-RU/bdvpnservice.txtui
    .xml
  • bootstrap/lang/ru-RU/bdvpnsystray.txtui
    .xml
  • bootstrap/lang/ru-RU/bdvpnuiapp.txtui
    .xml
  • bootstrap/lang/sv-SE/bdsubwiz.txtui
    .xml
  • bootstrap/lang/sv-SE/bdvpnapp.txtui
    .xml
  • bootstrap/lang/sv-SE/bdvpnservice.txtui
    .xml
  • bootstrap/lang/sv-SE/bdvpnsystray.txtui
    .xml
  • bootstrap/lang/sv-SE/bdvpnuiapp.txtui
    .xml
  • bootstrap/lang/th-TH/bdsubwiz.txtui
    .xml
  • bootstrap/lang/th-TH/bdvpnapp.txtui
    .xml
  • bootstrap/lang/th-TH/bdvpnservice.txtui
    .xml
  • bootstrap/lang/th-TH/bdvpnsystray.txtui
    .xml
  • bootstrap/lang/th-TH/bdvpnuiapp.txtui
    .xml
  • bootstrap/lang/tr-TR/bdsubwiz.txtui
    .xml
  • bootstrap/lang/tr-TR/bdvpnapp.txtui
    .xml
  • bootstrap/lang/tr-TR/bdvpnservice.txtui
    .xml
  • bootstrap/lang/tr-TR/bdvpnsystray.txtui
    .xml
  • bootstrap/lang/tr-TR/bdvpnuiapp.txtui
    .xml
  • bootstrap/lang/vi-VN/bdsubwiz.txtui
    .xml
  • bootstrap/lang/vi-VN/bdvpnapp.txtui
    .xml
  • bootstrap/lang/vi-VN/bdvpnservice.txtui
    .xml
  • bootstrap/lang/vi-VN/bdvpnsystray.txtui
    .xml
  • bootstrap/lang/vi-VN/bdvpnuiapp.txtui
    .xml
  • bootstrap/manifest.json
  • bootstrap/ui/ACCRecoveryPlg.dll
    .dll windows:4 windows x86 arch:x86

    Password: 1234

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • bootstrap/ui/ltr/bdvpnapp.ui
    .dll windows:6 windows x64 arch:x64

    Password: 1234


    Code Sign

    Headers

    Sections

  • bootstrap/ui/ltr/bdvpnsystray.ui
    .dll windows:6 windows x64 arch:x64

    Password: 1234


    Code Sign

    Headers

    Sections

  • bootstrap/ui/ltr/bdvpnui.ui
    .dll windows:6 windows x64 arch:x64


    Code Sign

    Headers

    Sections

  • bootstrap/ui/ltr/commoncss.ui
    .dll .js windows:6 windows x64 arch:x64 polyglot


    Code Sign

    Headers

    Sections

  • bootstrap/ui/ltr/popup.ui
    .dll .js windows:6 windows x64 arch:x64 polyglot


    Code Sign

    Headers

    Sections

  • build_info.json