PUP.Brute.BF

By CagedTech in Potentially Unwanted Programs

Table of Contents

Analysis Report

General information

Family Name:	PUP.Brute.BF
Signature status:	No Signature

Known Samples

MD5: 6567dbca3fa8c0ed3cee05bcd881ebac

SHA1: a4044d23ff4930dcc615a47eef564f1a1206ffe1

SHA256: 269BE9D1A30764378BF8317CE5B0054F08D95601DD1991D387C1C9150484E4F1

File Size: 1.26 MB, 1255180 bytes

Windows Portable Executable Attributes

File doesn't have "Rich" header
File doesn't have debug information
File doesn't have exports table
File doesn't have relocations information
File doesn't have security information
File is 32-bit executable
File is either console or GUI application
File is GUI application (IMAGE_SUBSYSTEM_WINDOWS_GUI)
File is Native application (NOT .NET application)
File is not packed

IMAGE_FILE_DLL is not set inside PE header (Executable)
IMAGE_FILE_EXECUTABLE_IMAGE is set inside PE header (Executable Image)

File Icons

Windows PE Version Information

Name	Value
Company Name	Oleg N. Scherbakov
File Description	7z Setup SFX (x86)
File Version	1.6.0.2712
Internal Name	7ZSfxMod
Legal Copyright	Copyright © 2005-2012 Oleg N. Scherbakov
Original Filename	7ZSfxMod_x86.exe
Private Build	December 30, 2012
Product Name	7-Zip SFX
Product Version	1.6.0.2712

File Traits

WriteProcessMemory
x86

Files Modified

File	Attributes
c:\windows\tsb16j\bdtr2g.cfg	Generic Write,Read Attributes
c:\windows\tsb16j\bdtr2g.cfg	Synchronize,Write Attributes
c:\windows\tsb16j\bdtr2g.exe	Generic Write,Read Attributes
c:\windows\tsb16j\bdtr2g.exe	Synchronize,Write Attributes
c:\windows\tsb16j\devexpress.utils.v18.2.ui.dll	Generic Write,Read Attributes
c:\windows\tsb16j\devexpress.utils.v18.2.ui.dll	Synchronize,Write Attributes
c:\windows\tsb16j\lang	Synchronize,Write Attributes
c:\windows\tsb16j\lang\arabic	Synchronize,Write Attributes
c:\windows\tsb16j\lang\arabic\stopupdates10.nat	Generic Write,Read Attributes
c:\windows\tsb16j\lang\arabic\stopupdates10.nat	Synchronize,Write Attributes

c:\windows\tsb16j\lang\brazilianportuguese	Synchronize,Write Attributes
c:\windows\tsb16j\lang\brazilianportuguese\stopupdates10.nat	Generic Write,Read Attributes
c:\windows\tsb16j\lang\brazilianportuguese\stopupdates10.nat	Synchronize,Write Attributes
c:\windows\tsb16j\lang\bulgarian	Synchronize,Write Attributes
c:\windows\tsb16j\lang\bulgarian\stopupdates10.nat	Generic Write,Read Attributes
c:\windows\tsb16j\lang\bulgarian\stopupdates10.nat	Synchronize,Write Attributes
c:\windows\tsb16j\lang\catalan	Synchronize,Write Attributes
c:\windows\tsb16j\lang\catalan\stopupdates10.nat	Generic Write,Read Attributes
c:\windows\tsb16j\lang\catalan\stopupdates10.nat	Synchronize,Write Attributes
c:\windows\tsb16j\lang\chinesetraditional	Synchronize,Write Attributes
c:\windows\tsb16j\lang\chinesetraditional\stopupdates10.nat	Generic Write,Read Attributes
c:\windows\tsb16j\lang\chinesetraditional\stopupdates10.nat	Synchronize,Write Attributes
c:\windows\tsb16j\lang\czech	Synchronize,Write Attributes
c:\windows\tsb16j\lang\czech2	Synchronize,Write Attributes
c:\windows\tsb16j\lang\czech2\stopupdates10.nat	Generic Write,Read Attributes
c:\windows\tsb16j\lang\czech2\stopupdates10.nat	Synchronize,Write Attributes
c:\windows\tsb16j\lang\czech\stopupdates10.nat	Generic Write,Read Attributes
c:\windows\tsb16j\lang\czech\stopupdates10.nat	Synchronize,Write Attributes
c:\windows\tsb16j\lang\french	Synchronize,Write Attributes
c:\windows\tsb16j\lang\french\stopupdates10.nat	Generic Write,Read Attributes
c:\windows\tsb16j\lang\french\stopupdates10.nat	Synchronize,Write Attributes
c:\windows\tsb16j\lang\german	Synchronize,Write Attributes
c:\windows\tsb16j\lang\german\stopupdates10.nat	Generic Write,Read Attributes
c:\windows\tsb16j\lang\german\stopupdates10.nat	Synchronize,Write Attributes
c:\windows\tsb16j\lang\greek	Synchronize,Write Attributes
c:\windows\tsb16j\lang\greek\stopupdates10.nat	Generic Write,Read Attributes
c:\windows\tsb16j\lang\greek\stopupdates10.nat	Synchronize,Write Attributes
c:\windows\tsb16j\lang\greek\wu.nat	Generic Write,Read Attributes
c:\windows\tsb16j\lang\greek\wu.nat	Synchronize,Write Attributes
c:\windows\tsb16j\lang\hungarian	Synchronize,Write Attributes
c:\windows\tsb16j\lang\hungarian\stopupdates10.nat	Generic Write,Read Attributes
c:\windows\tsb16j\lang\hungarian\stopupdates10.nat	Synchronize,Write Attributes
c:\windows\tsb16j\lang\italian	Synchronize,Write Attributes
c:\windows\tsb16j\lang\italian\stopupdates10.nat	Generic Write,Read Attributes
c:\windows\tsb16j\lang\italian\stopupdates10.nat	Synchronize,Write Attributes
c:\windows\tsb16j\lang\japanese	Synchronize,Write Attributes
c:\windows\tsb16j\lang\japanese\stopupdates10.nat	Generic Write,Read Attributes
c:\windows\tsb16j\lang\japanese\stopupdates10.nat	Synchronize,Write Attributes
c:\windows\tsb16j\lang\japanese_meiryo	Synchronize,Write Attributes
c:\windows\tsb16j\lang\japanese_meiryo\stopupdates10.nat	Generic Write,Read Attributes
c:\windows\tsb16j\lang\japanese_meiryo\stopupdates10.nat	Synchronize,Write Attributes
c:\windows\tsb16j\lang\korean	Synchronize,Write Attributes
c:\windows\tsb16j\lang\korean\stopupdates10.nat	Generic Write,Read Attributes
c:\windows\tsb16j\lang\korean\stopupdates10.nat	Synchronize,Write Attributes
c:\windows\tsb16j\lang\polish	Synchronize,Write Attributes
c:\windows\tsb16j\lang\polish\stopupdates10.nat	Generic Write,Read Attributes
c:\windows\tsb16j\lang\polish\stopupdates10.nat	Synchronize,Write Attributes
c:\windows\tsb16j\lang\russian	Synchronize,Write Attributes
c:\windows\tsb16j\lang\russian\stopupdates10.nat	Generic Write,Read Attributes
c:\windows\tsb16j\lang\russian\stopupdates10.nat	Synchronize,Write Attributes
c:\windows\tsb16j\lang\russian\wu.nat	Generic Write,Read Attributes
c:\windows\tsb16j\lang\russian\wu.nat	Synchronize,Write Attributes
c:\windows\tsb16j\lang\spanish	Synchronize,Write Attributes
c:\windows\tsb16j\lang\spanish2	Synchronize,Write Attributes
c:\windows\tsb16j\lang\spanish2\stopupdates10.nat	Generic Write,Read Attributes
c:\windows\tsb16j\lang\spanish2\stopupdates10.nat	Synchronize,Write Attributes
c:\windows\tsb16j\lang\spanish\stopupdates10.nat	Generic Write,Read Attributes
c:\windows\tsb16j\lang\spanish\stopupdates10.nat	Synchronize,Write Attributes
c:\windows\tsb16j\lang\turkish	Synchronize,Write Attributes
c:\windows\tsb16j\lang\turkish\stopupdates10.nat	Generic Write,Read Attributes
c:\windows\tsb16j\lang\turkish\stopupdates10.nat	Synchronize,Write Attributes
c:\windows\tsb16j\lang\ukrainian	Synchronize,Write Attributes
c:\windows\tsb16j\lang\ukrainian\stopupdates10.nat	Generic Write,Read Attributes
c:\windows\tsb16j\lang\ukrainian\stopupdates10.nat	Synchronize,Write Attributes
c:\windows\tsb16j\lang\ukrainian\wu.nat	Generic Write,Read Attributes
c:\windows\tsb16j\lang\ukrainian\wu.nat	Synchronize,Write Attributes
c:\windows\tsb16j\libvorbisfile-3.dll	Generic Write,Read Attributes
c:\windows\tsb16j\libvorbisfile-3.dll	Synchronize,Write Attributes
c:\windows\tsb16j\osclientcerts.dll	Generic Write,Read Attributes
c:\windows\tsb16j\osclientcerts.dll	Synchronize,Write Attributes
c:\windows\tsb16j\stopupdates10-settins.ini	Generic Write,Read Attributes
c:\windows\tsb16j\stopupdates10-settins.ini	Synchronize,Write Attributes
c:\windows\tsb16j\su10guard.exe	Generic Write,Read Attributes
c:\windows\tsb16j\su10guard.exe	Synchronize,Write Attributes
c:\windows\tsb16j\translate	Synchronize,Write Attributes
c:\windows\tsb16j\translate\change-from-234-to-250.upd	Generic Write,Read Attributes
c:\windows\tsb16j\translate\change-from-234-to-250.upd	Synchronize,Write Attributes
c:\windows\tsb16j\translate\change-from-250-to-255.upd	Generic Write,Read Attributes
c:\windows\tsb16j\translate\change-from-250-to-255.upd	Synchronize,Write Attributes
c:\windows\tsb16j\translate\change-from-255-to-300.upd	Generic Write,Read Attributes
c:\windows\tsb16j\translate\change-from-255-to-300.upd	Synchronize,Write Attributes
c:\windows\tsb16j\translate\change-from-300-to-350.upd	Generic Write,Read Attributes
c:\windows\tsb16j\translate\change-from-300-to-350.upd	Synchronize,Write Attributes
c:\windows\tsb16j\translate\how_to_translate.txt	Generic Write,Read Attributes
c:\windows\tsb16j\translate\how_to_translate.txt	Synchronize,Write Attributes
c:\windows\tsb16j\translate\stopupdates10.nat	Generic Write,Read Attributes
c:\windows\tsb16j\translate\stopupdates10.nat	Synchronize,Write Attributes
c:\windows\tsb16j\translate\wu.nat	Generic Write,Read Attributes
c:\windows\tsb16j\translate\wu.nat	Synchronize,Write Attributes
c:\windows\tsb16j\vy2bjj.exe	Generic Write,Read Attributes
c:\windows\tsb16j\vy2bjj.exe	Synchronize,Write Attributes

Windows API Usage

Category	API
User Data Access	GetUserObjectInformation
Process Shell Execute	ShellExecuteEx

Shell Command Execution


							(NULL) GRWLRL.exe /disable

EnigmaSoft’s Payment Processor Digital River GmbH Filing for Bankruptcy Does Not Impact SpyHunter Customers’ Anti-Malware Protection

Search

Change Region

PUP.Brute.BF

Analysis Report

General information

Known Samples

Known Samples

Windows Portable Executable Attributes

Windows Portable Executable Attributes

File Icons

File Icons

Windows PE Version Information

Windows PE Version Information

File Traits

Files Modified

Files Modified

Windows API Usage

Windows API Usage

Shell Command Execution

Shell Command Execution

Submit Comment

Trending

Astaroth Banking Trojan

Unhindering.app

Webmail Server Alert Scam

Most Viewed

How To Fix 'Printer Driver is Unavailable' Error

Discord Is Stuck on Gray Screen

Discord Shows Black Screen when Sharing Screen