Overview

overview

10

Static

static

10

file000_spoolcv.exe

windows7_x64

10

file000_spoolcv.exe

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    file000_spoolcv.exe

  • Size

    400KB

  • MD5

    e6688d5a1565053e114263a98daca7de

  • SHA1

    eb9c95ee5c0835406e27478099020ac1eee2c479

  • SHA256

    f4dbc868579e467f9e05766f67497ae6d8f4b3be91165d40df4a18ec912e5e89

  • SHA512

    c152cf41b58017466823e3d329265fb0dcf82fde8751587799d678ae46ab3745190d1e3686ecb97106abbd0990786eea90afe70b6ee10951b209f1e00583b9db

Score
10/10

Malware Config

Signatures

  • Contains code to disable Windows Defender 1 IoCs

    A .NET executable tasked with disabling Windows Defender capabilities such as realtime monitoring, blocking at first seen, etc.

Files

  • file000_spoolcv.exe
    .exe windows x86