Overview

overview

10

Static

static

10

tmp.exe

windows7-x64

10

tmp.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    tmp

  • Size

    12KB

  • MD5

    08bcb7541123d2766577c43afedb3f16

  • SHA1

    759b7420cd474b1f92b70e7da980fbe11ded6bfd

  • SHA256

    2357b67b058ef8d4b8ab28f5a0096eb4a554456fcfef8b39869c349322f19c14

  • SHA512

    0ba4dd2269273c9007a39c3cac6b7e5562749bb349ac311ecc8c38e08793d0c46cfc62928d23906bdca8fb8e2677abdf0d72d49268e293a37f2ee3faddc21a9f

  • SSDEEP

    384:fSPLTJHmRvlcan6X6zbbVxulfZnj1jsptYcFwVc03K:fDrbbAlKtYcFwVc6K

Score
10/10

Malware Config

Signatures

  • Contains code to disable Windows Defender 1 IoCs

    A .NET executable tasked with disabling Windows Defender capabilities such as realtime monitoring, blocking at first seen, etc.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • tmp
    .exe windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections