General
-
Target
SAO Ransomware.exe
-
Size
8.7MB
-
MD5
5b2a78f74846045a4d37cdf579a88a5d
-
SHA1
2bd8fcee2836fccc7ae820dbe0b5b689aa92625a
-
SHA256
1f0bbb210cc4f9a45065785afd38c061c641632d0cd15f8f57243703e169903c
-
SHA512
18052400576e3c1a18f33e83459866e42bb7924104df08852d1b28a581231f7d989534eae2070ba2cddf5b91cb70a524cd5ed1a00499f0dda4cd182826cc6768
-
SSDEEP
196608:3LpuSvsxF2WVskglKoHrPmexnAjf37jOUlPS4s8LhR0Cx:1SD2ksj8yPmewGUP1X0
Score
10/10
Malware Config
Signatures
-
Contains code to disable Windows Defender 1 IoCs
A .NET executable tasked with disabling Windows Defender capabilities such as realtime monitoring, blocking at first seen, etc.
Files
-
SAO Ransomware.exe
Headers
Sections