General

  • Target

    6af8efa60cbc9bdad8f27c312265a25c1f22a0b6c6b7244c6a6ce10785de4abb

  • Size

    1.2MB

  • MD5

    b7fa887f7682493aca961cf5570e56c2

  • SHA1

    138b930fc6ac8bf135597a1f32ad209f5c627c71

  • SHA256

    6af8efa60cbc9bdad8f27c312265a25c1f22a0b6c6b7244c6a6ce10785de4abb

  • SHA512

    e5e2071cb2aed1b2577abf1efea42f7aea3a1af1f8dc13cfb99b49a8501662cc79950736809d5b2d8e368f72655ccaf69af4076a6cfab2eb240d79c757e69def

  • SSDEEP

    24576:35xPgnTaMLalsGa4gQFhXE/cKCqCavtuHDSijdds03qbJ7:34aMOlZjZjKCGoj/j6V7

Score
10/10
r77

Malware Config

Signatures

  • R77 family
  • r77 rootkit payload 1 IoCs

    Detects the payload of the r77 rootkit.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 6af8efa60cbc9bdad8f27c312265a25c1f22a0b6c6b7244c6a6ce10785de4abb
    .exe windows x64

    02abf7189f5ed7c76c0812186bb0e6f0


    Headers

    Imports

    Sections