General
-
Target
c93b2e5437769a30e512a711ca27632b529736967d1c07b5b497eb9944f70374
-
Size
390KB
-
MD5
ba1dcc0f74dfef6cf5661a21169ab63b
-
SHA1
e7df8c5cef47ee32ff495e320dc2d11802cb9301
-
SHA256
c93b2e5437769a30e512a711ca27632b529736967d1c07b5b497eb9944f70374
-
SHA512
25946590742712ed1c53a56005d739d3f791e10dfa069734966fe5a5570b45ed5d9e4762b85353451b3c1eb13181abc8936e0de19e43a393c984ca9272d97c2b
-
SSDEEP
6144:duExlO9JwMmJqFK7uSQqQDDjZpkD4MseePMlAoGBrauY1NPpTZDfY3Y1t5wLFw+W:dl8ZmMXSQLjAsMmPMQaj51kQVMy51
Score
10/10
Malware Config
Signatures
-
CoreEntity .NET Packer 1 IoCs
A .NET packer called CoreEntity where it has embedded the payload as a BitMap object which is later decrypted.
Files
-
c93b2e5437769a30e512a711ca27632b529736967d1c07b5b497eb9944f70374
-
NYRNC200420511_FreightArrival.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections