General

  • Target

    Multicourse.exe

  • Size

    1.3MB

  • Sample

    230802-ynezpahe97

  • MD5

    e678383e81de2e36d976a18d3946397a

  • SHA1

    c457aaf02ae482ecc3781def1e92792bac68c0a0

  • SHA256

    8e5f1adc204654c50a6a4c802e9a28538486ac114f06b24ef55cc697d74840e9

  • SHA512

    d898ecbd4865d6c358898075ccc9697850209902b459b1a837a39d51a363ef3196ffb0e9de5d82fb10e667ad25b858c8cd758a086906e5b2d44b95e3000b15ff

  • SSDEEP

    24576:VEitishxjKPSmLr9kbcBnIuKA3scFB2PaL7mExvoorRpD:SIxjcFWbcBnTYatBr

Score
7/10

Malware Config

Targets

    • Target

      Multicourse.exe

    • Size

      1.3MB

    • MD5

      e678383e81de2e36d976a18d3946397a

    • SHA1

      c457aaf02ae482ecc3781def1e92792bac68c0a0

    • SHA256

      8e5f1adc204654c50a6a4c802e9a28538486ac114f06b24ef55cc697d74840e9

    • SHA512

      d898ecbd4865d6c358898075ccc9697850209902b459b1a837a39d51a363ef3196ffb0e9de5d82fb10e667ad25b858c8cd758a086906e5b2d44b95e3000b15ff

    • SSDEEP

      24576:VEitishxjKPSmLr9kbcBnIuKA3scFB2PaL7mExvoorRpD:SIxjcFWbcBnTYatBr

    Score
    7/10
    • Obfuscated with Agile.Net obfuscator

      Detects use of the Agile.Net commercial obfuscator, which is capable of entity renaming and control flow obfuscation.

MITRE ATT&CK Matrix

Tasks