Overview

overview

10

Static

static

7

HEUR-Troja...4c.exe

windows7-x64

10

HEUR-Troja...4c.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    HEUR-Trojan-Ransom.MSIL.Crypmodadv.gen-2b5c0eed6f0e364b39dba4263611b01e7c2399232fbf23a66ad17760d616314c.exe

  • Size

    284KB

  • MD5

    668983cf8223a398f4b8a1a4d7cddb7a

  • SHA1

    8fa5d4312dd5f1964a3bd34d2c09842ec02f135c

  • SHA256

    2b5c0eed6f0e364b39dba4263611b01e7c2399232fbf23a66ad17760d616314c

  • SHA512

    5e0e868a6640d1bf836142f14c3d29d658996e38e3e380c670132c0c85cbf8f9c6dfa0d58d9a04b2606ab1d0cf8d2c26449f869003c03207591d09e0061d9646

  • SSDEEP

    6144:ISoIcVpYGcAeYIiSOOrYJoLiWMWvGKab2btuMcjV:ILIaBoU4iFWvztuMcjV

Score
7/10
agilenet

Malware Config

Signatures

  • Obfuscated with Agile.Net obfuscator 1 IoCs

    Detects use of the Agile.Net commercial obfuscator, which is capable of entity renaming and control flow obfuscation.

    agilenet

Files

  • HEUR-Trojan-Ransom.MSIL.Crypmodadv.gen-2b5c0eed6f0e364b39dba4263611b01e7c2399232fbf23a66ad17760d616314c.exe
    .exe windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections