General
-
Target
05084599.exe
-
Size
723KB
-
MD5
b7bfedca07d368259e4bada1681e74a4
-
SHA1
0732e3f5e3b66c3a0f29684c1694d3cc8ce82cdb
-
SHA256
14c31e915da778b4aa7f8b0dd21d5fdbe2c297cc9924900b958c4de822c0a624
-
SHA512
9163d0b4984c4017ea5c52e2d293d7f345ab37adf21d0978cf57656a3c8d7dab4a3d4b1382a1b30bdce16da3205d22ae39f4249bdccbe17964e49e56c839d1b2
-
SSDEEP
12288:poCD3PLjI9B4s/4jB7xWyLiF5vZnWJxZWiZcZpynBh2yTPr0Ok/oCM:aSPPI9us/kB7Lu8JaiZmyOWVPr
Score
9/10
Malware Config
Signatures
-
Beds Protector Packer 1 IoCs
Detects Beds Protector packer used to load .NET malware.
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
05084599.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections