General

  • Target

    KMS Tools Portable (2).zip

  • Size

    168.0MB

  • MD5

    d4f69c9e7efb20ec789e45b829e2b542

  • SHA1

    43715328ac2eb50c31a075cd4ed02d33c626140b

  • SHA256

    3611d70fd0636f5858bd4d436e75e4afc9fc8763a034254ad6d5033f4a64ef84

  • SHA512

    36d042b636530f3eb4bc31128b7d12905f2976df718d1d834c3476f75a8658c036c4060645ca2b9be8e9e7f2cec7c45e692040883af0332d9aaa556a24f4f865

  • SSDEEP

    3145728:kJCHBM+DyG4HQqJMK/IoUoN2u1U1qjp6R6cPRfsG3NoZmp+paWrjfpNOn:kwHBVyGvqTXo1qFIZ5/dSgW5NOn

Score
7/10

Malware Config

Signatures

  • Themida packer 1 IoCs

    Detects Themida, an advanced Windows software protection system.

Files

  • KMS Tools Portable (2).zip
    .zip
  • KMS Tools Portable/Add_Defender_Exclusion.cmd
  • KMS Tools Portable/KMS Tools Portable.chm
    .chm
  • KMS Tools Portable/KMS Tools Unpack.exe
    .exe windows x64


    Headers

    Sections

  • KMS Tools Portable/KMSAuto++.ini
  • KMS Tools Portable/data0.bin
    .exe windows x86

    fcf1390e9ce472c7270447fc5c61a0c1


    Headers

    Imports

    Sections

  • KMS Tools Portable/data1.bin
    .exe windows x86

    4a0eb751a0cc2fdf8841ea3c33b85101


    Headers

    Imports

    Sections

  • KMS Tools Portable/readme.txt