General
-
Target
Cartis_tool_2 2.zip
-
Size
1.5MB
-
MD5
b42a2b66ee0416727fefdc15f0e56a69
-
SHA1
a0998d7d2cd03b2eef6e246a59178578a7c2b09a
-
SHA256
7ba1d4740d5a60be3f57cc948784bd385ca50083f57c062983a4e643f562d082
-
SHA512
fe0bd5d807a8cbfaec0ee30c73688cce3002a7617a592e6b38a8659cbb0c108397ec6b0d75c35d98faf01292db74f25c4c791f0755bc65ea4ce394190596c0d1
-
SSDEEP
24576:dUNi1vxLLemocpUw5qPVS0Cu5mb8t2wC2mbkK89Ep/3KQ/UVJAkEBiPHtYQOZd3i:mA1vx3em/pUjtSlu5aE2XkY/n/UVJARQ
Score
7/10
Malware Config
Signatures
-
.NET Reactor proctector 1 IoCs
Detects an executable protected by an unregistered version of Eziriz's .NET Reactor.
-
Unsigned PE 2 IoCs
Checks for missing Authenticode signature.
Files
-
Cartis_tool_2 2.zip
-
Carti's tool (2)/Carti's tool/Amzon_giftcardgen.py
-
Carti's tool (2)/Carti's tool/Neptune.exe
2c5f2513605e48f2d8ea5440a870cb9e
Headers
Imports
Sections
-
Carti's tool (2)/Carti's tool/Readme.txt
-
Carti's tool (2)/Carti's tool/Xvirus.py
-
Carti's tool (2)/Carti's tool/accountNuke.py
-
Carti's tool (2)/Carti's tool/demoniplookup.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections
-
Carti's tool (2)/Carti's tool/dox.py
-
Carti's tool (2)/Carti's tool/nitrogenforcarti.py