General
-
Target
NjPOD_Remastered.exe
-
Size
15.5MB
-
Sample
230921-m8l3yshe92
-
MD5
dc9a200b471eb2348bb2b7d179f1ccb8
-
SHA1
f1f6a71c74c4d31881fed3a32905e411487837e2
-
SHA256
8b3e92b9f0a2125be44523b9918b68b6c95c96accd5a1c6ae7458209a69d9146
-
SHA512
6a23782cb8b2d4d326a9728f4d1de9c72169259edf4c3185dc0a0116c02d0a61092327ff725ba0c1b11891648f086152efa4d5e280793696d20e9d1bbb54f17b
-
SSDEEP
393216:6Untikz6hDeDMe4rW0kvMYNDv2oi+DBRiy/GBkgbPk7W2TFPNcLyIy1HgX:6Untikz6hDeDMvrkNyHyikghyFPeN
Behavioral task
behavioral1
Sample
NjPOD_Remastered.exe
Resource
win7-20230831-en
Malware Config
Targets
-
-
Target
NjPOD_Remastered.exe
-
Size
15.5MB
-
MD5
dc9a200b471eb2348bb2b7d179f1ccb8
-
SHA1
f1f6a71c74c4d31881fed3a32905e411487837e2
-
SHA256
8b3e92b9f0a2125be44523b9918b68b6c95c96accd5a1c6ae7458209a69d9146
-
SHA512
6a23782cb8b2d4d326a9728f4d1de9c72169259edf4c3185dc0a0116c02d0a61092327ff725ba0c1b11891648f086152efa4d5e280793696d20e9d1bbb54f17b
-
SSDEEP
393216:6Untikz6hDeDMe4rW0kvMYNDv2oi+DBRiy/GBkgbPk7W2TFPNcLyIy1HgX:6Untikz6hDeDMvrkNyHyikghyFPeN
Score7/10-
.NET Reactor proctector
Detects an executable protected by an unregistered version of Eziriz's .NET Reactor.
-
Loads dropped DLL
-
Obfuscated with Agile.Net obfuscator
Detects use of the Agile.Net commercial obfuscator, which is capable of entity renaming and control flow obfuscation.
-