Overview

overview

10

Static

static

7

WalletMana...er.bat

windows10-1703-x64

10

WalletMana...er.bat

windows7-x64

7

WalletMana...er.bat

windows10-2004-x64

10

WalletMana...ram.js

windows10-1703-x64

1

WalletMana...ram.js

windows7-x64

1

WalletMana...ram.js

windows10-2004-x64

1

WalletMana...cli.js

windows10-1703-x64

1

WalletMana...cli.js

windows7-x64

1

WalletMana...cli.js

windows10-2004-x64

1

WalletMana...ct.dll

windows10-1703-x64

1

WalletMana...ct.dll

windows7-x64

1

WalletMana...ct.dll

windows10-2004-x64

1

WalletMana...et.yml

windows10-1703-x64

3

WalletMana...et.yml

windows7-x64

3

WalletMana...et.yml

windows10-2004-x64

3

WalletMana...ignore

windows10-1703-x64

1

WalletMana...ignore

windows7-x64

1

WalletMana...ignore

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    WalletManager-main.zip

  • Size

    8.0MB

  • MD5

    b4d4bd3c27530073469a6be33b98d4bc

  • SHA1

    a37f6a9ce28275bebb316a97c0a90a82659eb579

  • SHA256

    195fa0422abb40d87f2eebb0f3ceeb449aacbe0e44b379dd78c80c2249db20af

  • SHA512

    c070ce7bb74d74886f1fc68550c7b0f536c4ea06ced21fe63ad2854b009d4ed286a00a10e9ad1fe1de2ef257e8698b6a8e75967327c9e25db9f2965d7dbcdac7

  • SSDEEP

    196608:Mp2CDSF3X9UB7CMZOsthJK+yshEENuCFSVBUmToJJjEr9:MpEZmB7MsZK+ysOpnTee9

Score
7/10
agilenet

Malware Config

Signatures

  • Obfuscated with Agile.Net obfuscator 1 IoCs

    Detects use of the Agile.Net commercial obfuscator, which is capable of entity renaming and control flow obfuscation.

    agilenet

Files

  • WalletManager-main.zip
    .zip
  • WalletManager-main/B.D Wallet Manager.bat
    .bat .vbs
  • WalletManager-main/LICENSE
  • WalletManager-main/Program.cs
    .js
  • WalletManager-main/README.md
  • WalletManager-main/cli.cs
    .js
  • WalletManager-main/detect.dll
    .dll windows x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • WalletManager-main/github/dotnet.yml
  • WalletManager-main/ignore