ee6ce361f48f651e4c88f70b567af40f7f74eb6aff291411421f25495d36bfc0 | Triage

Submit
Reports

Overview

overview

Static

static

ee6ce361f4...c0.exe

windows7_x64

ee6ce361f4...c0.exe

windows10-2004_x64

3

Sharing

General

Target

ee6ce361f48f651e4c88f70b567af40f7f74eb6aff291411421f25495d36bfc0
Size

411KB
Sample

220625-lmc3gsfafn
MD5

bf5e2b54f7f61afa4669a3b9a571e1f1
SHA1

31a74af9a18e065cea2e05e5bbb1bcc4fddc144a
SHA256

ee6ce361f48f651e4c88f70b567af40f7f74eb6aff291411421f25495d36bfc0
SHA512

baf94377a477954a2fb547e1e22945bde878c48fa3b9294246231c090f8e1f608cda38b4bdf6249b8c60e8fcdb12b5203d3eb5c5442bde04e5071527053ff446

Score

10^/10

rezer0

Static task

static1

Behavioral task

behavioral1

Sample

ee6ce361f48f651e4c88f70b567af40f7f74eb6aff291411421f25495d36bfc0.exe

Resource

win7-20220414-en

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

ee6ce361f48f651e4c88f70b567af40f7f74eb6aff291411421f25495d36bfc0.exe

Resource

win10v2004-20220414-en

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  ee6ce361f48f651e4c88f70b567af40f7f74eb6aff291411421f25495d36bfc0
- Size
  
  411KB
- MD5
  
  bf5e2b54f7f61afa4669a3b9a571e1f1
- SHA1
  
  31a74af9a18e065cea2e05e5bbb1bcc4fddc144a
- SHA256
  
  ee6ce361f48f651e4c88f70b567af40f7f74eb6aff291411421f25495d36bfc0
- SHA512
  
  baf94377a477954a2fb547e1e22945bde878c48fa3b9294246231c090f8e1f608cda38b4bdf6249b8c60e8fcdb12b5203d3eb5c5442bde04e5071527053ff446
Score

10^/10

rezer0
- Contains code to disable Windows Defender
  A .NET executable tasked with disabling Windows Defender capabilities such as realtime monitoring, blocking at first seen, etc.
- ReZer0 packer
  Detects ReZer0, a packer with multiple versions used in various campaigns.
  rezer0
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy