General
-
Target
download.exe
-
Size
537KB
-
MD5
ec6eda82feb05fd53bd91e09d81c4851
-
SHA1
4e1178949d6d5ee4bc6edb2ca3a5b01cbb0145bd
-
SHA256
a9f6936360b94b07c20351aba6fe85b4c6c36b237437612bc35165fce4294faf
-
SHA512
9f59ca532d033ea99cea0b5d139a024a28326bc19a99348fa98e60ee308688164083c8481b6cdad0d46876a9face1e224ff50e5b7c4e0cf1190d4df6d52a52e9
-
SSDEEP
6144:o7A+44sibrdECvehEkJ8oLHkwwETkzTzTETrHSSPLjgW4g+Ehf:sA+YobvehtLYETkzTzTETrH7LjzJh
Score
10/10
Malware Config
Signatures
-
Agenttesla family
-
.NET Reactor proctector 1 IoCs
Detects an executable protected by an unregistered version of Eziriz's .NET Reactor.
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
download.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections