General

  • Target

    Obfuscator.rar

  • Size

    57.1MB

  • Sample

    230928-jj652shb9z

  • MD5

    0a5077a4c5c36d92acde8ad2369395bb

  • SHA1

    fad332572a7942f717df2dc7ec6628cffb056ed9

  • SHA256

    62b1ec16a0de37389e6155eb717e2c3690f7ce97776479726f561c7c7cc90996

  • SHA512

    7797409ad505e938ac126af006a4c6e87609919a2db59d7034047b8473282c54953d798e789d80d017ab4e32b41fb3e4a35e515782c0f9aa430c0e3affb9dec1

  • SSDEEP

    1572864:6kvFf90qZjVR4bgpI+0eGnIzUv5Gd02I4g7rod:6kvFZjV2bSI+wIkezi8d

Score
7/10

Malware Config

Targets

    • Target

      DotNetPatcher4.6.6.7/LoginTheme.dll

    • Size

      41KB

    • MD5

      0b20d7f48cb721417ea7adc9960603b8

    • SHA1

      9000828b1040c26d057a7a13fc939726753ff169

    • SHA256

      95682e3b468901bcde4c3b4632016c79a588293e297ec5b1f292c32ca418971d

    • SHA512

      b860485a622d74d18375d3cd49931bca7c06698a6e74a9187acd1478356fb2d8608a0f520a8017a769f9dd8d407cfb09a291c1290b066f56fad831823f60321d

    • SSDEEP

      768:Ymz0AFiXnGYlx6UpH/h0S7/HyZq2QLKH:bz2GObH50S7aZqlKH

    Score
    1/10
    • Target

      DotNetPatcher4.6.6.7/Mono.Cecil.Rocks.dll

    • Size

      14KB

    • MD5

      71fcbcbba7113d4b6afec488ad680b27

    • SHA1

      2cf4965f9f4bae8e34ce9ab9b1411c8917dc2109

    • SHA256

      4c4bc87c8134a0e9aaa17e47729a7d63a101d3ff84c77827fc77af6d46b77a4b

    • SHA512

      e7286acbf9ff60ed530019af0b71bca82cb9c2af6450be267e52ac5b749c9047276c0b1f242de7dce0599ca9c96a8d4fddc970484d392c868470cf00db42e239

    • SSDEEP

      384:DVM8HnESgSlR9neJcs6MWE/h84HlrjEsSHmCu:DJn2SdWhmHmC

    Score
    1/10
    • Target

      DotNetPatcher4.6.6.7/Mono.Cecil.dll

    • Size

      266KB

    • MD5

      5e4ca2efff7037f2378c9db750ff1244

    • SHA1

      121ac4362fe7d0dec677c1d0848bd67db1dc84cb

    • SHA256

      840971855fcc5098ad12cca7f988b42524e2f823ef4ed5aae8a20704ee3e8504

    • SHA512

      cf94228e73b47ecc1b18bc62e17e10f98e7c350e717420e086bb1c7ceb3a1d02a2e68e72789f95fe5e6f6d895120e8dd9dab802a748f97bd00dace62a7bb205d

    • SSDEEP

      3072:TfD9+YuO915LS00Lg8AE/R2xo6ve0kakJ2h0FO8WRR9FUYAdeCISNiuUTYcP66iP:7p+o91whvRBs9wi0x4FU/Ni3TtPMu

    Score
    1/10
    • Target

      DotNetPatcher4.6.6.7/SevenzipLib.dll

    • Size

      30KB

    • MD5

      463ec87fcf823f4d0bb3dda5d8be3e92

    • SHA1

      634f5326a1c9933abc70984be2b4af6f5fff5d0b

    • SHA256

      2d6ef5eb8546e657d058fd0255518d5821588856ffad33260ee6bf2fc890d733

    • SHA512

      592471a1ad7ffa8eefa567941a05ca7e513f560702b77ae41902a902f1d82506e316384c85e83dea45fc120c72127ec5aa241b846ca06b4a8d1c968b9c1a4219

    • SSDEEP

      768:uyP9iwMo93S/+XjDEFPK8UwnSxzqhpTDG0qP+tqBUP7E0y:u2GkjDEtcmTidUP40y

    Score
    1/10
    • Target

      DotNetPatcher4.6.6.7/Vestris.ResourceLib.dll

    • Size

      74KB

    • MD5

      8bf7d3475b0a9c71b61e23a0346a61a8

    • SHA1

      fe1bb57b9e2a8c2b31aa475fd0ad511ae611e12b

    • SHA256

      0cb103d80814e09383255f12fc323a7f805fa5103dd83389c8fb4ee7fb1bf4c7

    • SHA512

      a0a766dcf8585b9e3ae28d80215277cce291c57014dafd71efc40ab1b2ed455b654f63049860dd066644d0f8c36f98f89ded442c87f110d01634d89fe024768e

    • SSDEEP

      1536:kyvSUKqXBDi69r+J9JjGvTaokv4PDya61Mt5metejQFVl:xaNqX5z9ry4rkv4V61EmetWkl

    Score
    1/10
    • Target

      DotNetPatcher4.6.6.7/dnlib.dll

    • Size

      61KB

    • MD5

      c1998048057c9620cf4ea24d56ef1899

    • SHA1

      31bb74f83ab7ae6ca7de3020e078a5744589620e

    • SHA256

      1f1ca64b9be0cf358c14c8be69a77b74d7f17ae462e324dc8a4e778dd96f802d

    • SHA512

      b8856c7ed20054064120257784497ff616ef15df769238ab30abec4be0833638a96b43728d73e289088c242158328e461d3f29ada6f08caaf32bffaf723d16d8

    • SSDEEP

      768:6TwKKyky+QRKYcL5UYY1QwIUNkb3d0mZJjAxLLfCqTRPhimoLbutcWCtu:6XoL1UYYedZZJjAxfCqTRPhimtttSu

    Score
    1/10
    • Target

      NET Reactor v6.9.0.0_fu11/Help/License Agreement.html

    • Size

      20KB

    • MD5

      06c924279196f41e26319f9bf5e65bfa

    • SHA1

      3c0077fdcb7fe9d2414e8490a165c5d45c78ac75

    • SHA256

      ea175c9d9d6597cc35aebc53a6bdc10e1e914c6d5d6fc6c19e0da78b11b4b137

    • SHA512

      d3234456a399628e0e4178612c1ebb02a37e74c3226f7cf31a1aa0330644debbe8f8095a83a7cb41dfc3ddd22695f8853a866094f0814d4698227de875625816

    • SSDEEP

      384:Dhbkegxb0Fac9mfn3+2YCjDoAOIdHNY0B+:lAhxWfOnO6PAYq0B+

    Score
    1/10
    • Target

      NET Reactor v6.9.0.0_fu11/Help/REACTOR_HELP.exe

    • Size

      2.6MB

    • MD5

      db1c91c8d1d7573371cac6a51bf3a1b9

    • SHA1

      291fe96baeeca49fd4271f06b885477de284bf9c

    • SHA256

      a3f0cebda251dcf4ccb5915d8ead90771f76e0df9fbb35193b74e4687852d473

    • SHA512

      da066b919316ce98255562c41c4267dd3059695028d8c8b19ed1303a57b909efe0a333bb2d7a5020c5c0c88824e233242548d3673d7f8a01db11a393b92da3ca

    • SSDEEP

      49152:7REPdRPWz0aXp8YttmYTnPFVpqW3LPDt78wqqRL9q2mhUdot8fsgL6WnWNM:72I0opZfTnPJVPDt78wqqlrm6St8fYWz

    Score
    4/10
    • Target

      NET Reactor v6.9.0.0_fu11/NCC3.dll

    • Size

      72KB

    • MD5

      aa84f91edd922e7b3bb979e663c94f1a

    • SHA1

      da46b9962a6c6cceef38c3e11b8b5bc9c1b536fa

    • SHA256

      38274608d5a4b53ec22f8099f798ba46ce0ed41db65a33dfb3853f0dbf849f6f

    • SHA512

      88392fc77a0300ece306908867be38011530d9eefdf003452ba86d82f2fa4a61c2b27a199f376ac307c095beaa4f52cefcab59c8b28fa187c0bca13f55f2d98b

    • SSDEEP

      1536:a44UF/3qab79HtYDAD5MPEBq9iNv6qfSOBHfVW:a44G3fRMPiuuv6qqOBHfVW

    Score
    3/10
    • Target

      NET Reactor v6.9.0.0_fu11/VS08ReactorAddin.dll

    • Size

      133KB

    • MD5

      b4c1e8023be1bd3af8425885ed5d02ce

    • SHA1

      0d6e7eb3f8a6a442d7f7c030ddb0bdc5d907deed

    • SHA256

      1952313f3a5c3b4e7a1269238dc070301c356bfb876471332d6439b6d3eefd12

    • SHA512

      be0dec723b045afba3799435329b4c6dfa19997a4ba23725236f449990392f8531574eef1bf786bcf36777e7b72314d7210ed9e5508b114ae9a4112613436401

    • SSDEEP

      1536:J1Ep+y0dr95DbEX1sJOSJCZQweMdYU+ZQweMdYU9:HS+y01fbEX+JOk

    Score
    1/10
    • Target

      NET Reactor v6.9.0.0_fu11/VS13ReactorAddin.dll

    • Size

      134KB

    • MD5

      11ca1dfec3eaef207f6393d307cd5815

    • SHA1

      c3e8d5267c6c295a0124dd396026ab07bf28ab09

    • SHA256

      5e0efbda4f047575e7b7cd0ef047bddc7b05d5225f4a98a7d1ac93e28471e742

    • SHA512

      bcac4268e3baf11ae8b8a87d6227f36b3c998040ef5301da5fd24e273d04827a74a5e027feb11decfddacfed2bbd2f86889fde63acf4e5c5c8adbc0e1b7ec935

    • SSDEEP

      1536:xNfSLgOxb0fEonTpODxuHfr97OCzF1KRsNVpbdTRkr1sJOSJ4ZQweMdYUsZQweMc:xtScE8TIDefr97jFARsfpbd14+JOL

    Score
    1/10
    • Target

      NET Reactor v6.9.0.0_fu11/VSPackage/15/dotNETReactorVSPackage.dll

    • Size

      494KB

    • MD5

      0a19a82669aec04520d5e4975483ba6e

    • SHA1

      60a1ef331007b2bb4e1f9f0227343ffc91981a2f

    • SHA256

      6af5fe0ee6ef40d813e22c376dfb0e2f240fd18cc9212370242449c343ab299f

    • SHA512

      b76d54814eee0f2daaa641d3a2de8a89926115a53e13f1dc2a64d39aa7ca60d46c2f324e28b64978b4416c9135238b6bf7cf2b1b85506efe9bbe28940a396431

    • SSDEEP

      768:Hcm08y23H9mFFcYdUtMfxVgkJWDXbcZj5XLwIiiiSSSSSSSSSSiiiiSSSSSSSSS6:8mHAFFcrIhWDXbcZ5w1nZQweMdYUp

    Score
    1/10
    • Target

      NET Reactor v6.9.0.0_fu11/VSPackage/16/dotNETReactorVSPackage.dll

    • Size

      519KB

    • MD5

      64fab9617e4e2d948d68d9c11823039c

    • SHA1

      a708dad42af651055b327a83e45954e368a6d343

    • SHA256

      f4eacdb8c20c93fd4d7d1c4ef2c02c0949ac6eb2a7661a759f18613a100ce3ae

    • SHA512

      4facf00b4e3348836a2ab51f6a442aca790c868e3abbff285a5043b885d82c453c9675717ca513ab33386cd559d2830a2178e16feea13c97d9849492900a098c

    • SSDEEP

      3072:x/1RKji2074wvPR3TbMNRuWwRl1ASqqWT:xl4cPZbTWwRl1ASq

    Score
    1/10
    • Target

      NET Reactor v6.9.0.0_fu11/VSPackage/17/dotNETReactorVSPackage.dll

    • Size

      520KB

    • MD5

      485ef536675fe48be65aa52158db8c75

    • SHA1

      4f621754107cf58d7c45ae613b52ce13347982fc

    • SHA256

      a53c16197c7c83e42c08d3e273e11467f991f85ec804686801c5ffcf073cb2f8

    • SHA512

      44c1abab67a9c19d5f79388ee859dbd439c555c623d49fc286281c33f4fe492b2d02b578ce555711700d84e4de3f47512e532437ae5e15209597bbfceeeb4109

    • SSDEEP

      1536:QLxQ2UWs68E3+BoQYNzJ6K3IbzMOJXRuGO26RciJ191Ak9VViqvn:iBUWsUvNd3IbJ1RuhRl1ASqqvn

    Score
    1/10
    • Target

      NET Reactor v6.9.0.0_fu11/VSPackage/dotNET Reactor VSPackage.dll

    • Size

      79KB

    • MD5

      1d0bcae08d5dbeda966db1c40bfb1e63

    • SHA1

      cd4226f668ba3ec60cb43f07b93cfd6030b33c72

    • SHA256

      467f0149653f4f902e04c09680b3688331dd864d3c5b19a11823700a1088d887

    • SHA512

      e5ae9cc174a0282f492f5740f50e73c40c64ab4de6a4d08f47067dce1321d7e88ce7bfc254bfdd6e5a9092f3d1e8018c9e0f27a0c15087b06ab9cf561c58b7f1

    • SSDEEP

      1536:N8nMmUIi/v3vTJAgcic/CIbLfIruIZQweMdYUD:aMmU5Xs33bsrd

    Score
    1/10
    • Target

      NET Reactor v6.9.0.0_fu11/VSReactorAddin.dll

    • Size

      97KB

    • MD5

      afc9814513e9cfb6a7905f1e6186e195

    • SHA1

      641c75d7f0891fe5a4007b57cff863ee667a6d29

    • SHA256

      a2629e2c3bf06260116bd88b07a8ee4fc8846367c9d8de53608ad5b4aadeb9db

    • SHA512

      34ec4738c20b16fb22f600b0be84647a127d7c134365d53e78b8b3fcc5b38a4a91390503fd4d445b439831fe0fbd4a5bfa70216dc53c8df5daaa2b9f084a5f50

    • SSDEEP

      1536:mnQAvDNONuHEEJTRkfLCbZGCZQweMdYUA1sJOSJE:lAvJKukYdkObZGt+JOt

    Score
    1/10
    • Target

      NET Reactor v6.9.0.0_fu11/dotNET_Reactor.Console.exe

    • Size

      34KB

    • MD5

      69d18a3245f3c2fd02c82304c494e977

    • SHA1

      049cda6bc59daeadfe82fce2197e0e15c2847a7b

    • SHA256

      b55b0a652538836ed681c2afd985310fd39ad2f31ac159847fc46a6065f3232e

    • SHA512

      5791cffbc2389eaaf18e4f31c320325d4bdfadf7ab00c847bfedccbea8fec26a3f4452877d00c95e0573e90306d7a2c988c00fcb7d495ac22955c7f64fb047c3

    • SSDEEP

      768:5oOABBREOgrMTPrZwbiRPp7yMkZwuzZyiRYn7:5oHB2OlfZwbixp7yMkZwWZyien7

    Score
    7/10
    • .NET Reactor proctector

      Detects an executable protected by an unregistered version of Eziriz's .NET Reactor.

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    • Target

      NET Reactor v6.9.0.0_fu11/dotNET_Reactor.exe

    • Size

      13.3MB

    • MD5

      bd73df4cf427511993075f7a16e037a5

    • SHA1

      63f116641b0655f53e93d62ae559d510ed5af134

    • SHA256

      fa0a32d408a8df70ec44f3d2374b058f57b86ff49b8068b8c68f8505d3463970

    • SHA512

      49ad63e65e1f6a454778c904727c948969145eb09457105093af463d933413a7d30437051c7ddb8ded0b46d38b2018a1a78c83af582ab6775bef870057a9dfc3

    • SSDEEP

      393216:xfuP82nPJiP63TKZqkoPrSz4rkZD1K1fU:xqPIPgTxkqrV6YN

    Score
    7/10
    • .NET Reactor proctector

      Detects an executable protected by an unregistered version of Eziriz's .NET Reactor.

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    • Target

      NET Reactor v6.9.0.0_fu11/runtimes/brolib_x64.dll

    • Size

      804KB

    • MD5

      8088c07ec85e0d3149a9ba7c03129d16

    • SHA1

      8341cf644ef0d94e5f7088bb478f19718586284a

    • SHA256

      b3ab6d185c0f2d4af15df8c0af800a5c3dfcd725454da8809a9168587ef3c3e8

    • SHA512

      7bb73483d8b4fad17e5c9792eaf2ecf88347d33aa38d0533579be9b25b516deed292c404334a5f5d242911c4a21e5ce5bc22bbcbed6f1aee4f7003572701ad04

    • SSDEEP

      12288:Or3Tvu99YBDQCzVgi0LQJnN8ZXTw05nmZfRLMIAHhly9UF:OXvcY6JMJSiAmZfRL7Ama

    Score
    1/10
    • Target

      NET Reactor v6.9.0.0_fu11/runtimes/brolib_x86.dll

    • Size

      741KB

    • MD5

      f32f8264a9be91fb4fc76e70943e67ab

    • SHA1

      aa8d5ede0dd3647fb02c5d37c915b7599e0fff45

    • SHA256

      993e764d172013dc43ead42a6d8e807194530957dffa06d5eec9b53e2a00934c

    • SHA512

      1c29004739717c6c360b04bf66542828aad9f34bf0cc37e4a780c2613141c1e846d67b69dd7537479a488064147c5ba9530b4eb9b5171cdff8b5394314174e1e

    • SSDEEP

      12288:xQsZg52nrBEgCF5kD2XFm2+3m2R9h8UXTw05nmZfRWMmAHhlyIu:xs2n1ExkD2XFm2+3m2+fAmZfRWVAx

    Score
    3/10
    • Target

      NET-MalwareCryptor/NET-CryptEngine.exe

    • Size

      13KB

    • MD5

      7fc4209108234595d626f2431d4d3470

    • SHA1

      82a31cb8bf6107ef9d257458cb1c373410a52ff9

    • SHA256

      d21f5c74a79baa6fd71440d41d89c18f2b0b9c0fba4a84d4669836a347147a86

    • SHA512

      4420b13874b0180e8997b030515f601c1298cec172f8054e5bbd892424272c1ce88b55364f9217bb696d9d631ea50bec6e9f58f9656fa3c2c39a2043ff549362

    • SSDEEP

      192:x84WYgY6fGYQNpnVPcvfkwUptIgetmxruxtl6IW1vnIVJUTF+wR5K2Pc38c2t9k:xvIGYCVVP4oYtmruOnIXUTNK2Pc3Kz

    Score
    1/10
    • Target

      Noisette/Noisette.exe

    • Size

      1.5MB

    • MD5

      090bfe134370fd3eb0c7b59ea402f7a6

    • SHA1

      ad7f9a8d00ba2caf7a7ba5c86bd7e964b43f29d7

    • SHA256

      10336f6e654be3f068252e4ad521e0ad3f5109fc4a6cd0e307462c14c4ecf470

    • SHA512

      f1b57c590d782a3c0412f4fe9d4662de0c42e75826558f568208d1f477f458ba19833ad53c8c9fc17277461ee301d7d7d84cbcaffc372f5b2c007fcb08b8de8b

    • SSDEEP

      24576:carH+HBY9BXgAh2cUEM0QkVWBd8UZE++4Qd1zF3q:UIgAh2cUEM0QkVW8UZE++4Qd1zF3q

    Score
    1/10
    • Target

      Noisette/dnlib.dll

    • Size

      1.1MB

    • MD5

      fa7f379247ebdabbab8dfc252aa34536

    • SHA1

      d3f9f0b4834e07ba09df49065678f7f522c1d632

    • SHA256

      2eefaa08bb1c2205450a4bf27774f603c16f12b0583033a23f4e162d3a63d12b

    • SHA512

      4bb6d36f026f84a7d0a6f7ccece13bcdc48719138c2f4a6e0145d34ce9035082bb63b358a254dd23c04e4a8919e955c6cfca61e80b5e166521bd895c059f44de

    • SSDEEP

      12288:R8yH4CnaLaPkwrBkgzh8YZuN/3KPdacfTzLXeDbuyINJybYCxSQ76t4P:ijC6V/3K1aeTzLXWbuy+JeYCkQ76t4P

    Score
    1/10
    • Target

      PeProtector/ClientFile.cpp

    • Size

      8KB

    • MD5

      385f980a95b8cb2edf6a59cdc386c11c

    • SHA1

      5a2088e61670ea9bd8d9e2a9559661f6cfb4bef0

    • SHA256

      799751c92c1f1db845e84ffdf921087cfd3173f84b8485e30f4f34c8e20a76e0

    • SHA512

      857696062c4131ae00e01b2aab9f980a4fbc12ab407b5450008b642c1859ab441baf949a89661be487c6b21231d17f63d45c99464b73cb68638aafb7cdc22fed

    • SSDEEP

      192:QzjSUUs6C6O8E/i3jtaCe4eU2MBWsCv8a3Wej0/tv8aR7wVe6C8EoaCPp:Le4eUvBWjWew/p7wVp

    Score
    1/10
    • Target

      PeProtector/Compile/main.cpp

    • Size

      1KB

    • MD5

      957204a75c3d908ad6426e2d92a90816

    • SHA1

      0e5f1b4a037db5918e0d1696ee348d940be740c8

    • SHA256

      a7da7cff9bec61793fbff52cd738202552f5bf2ab5da851c6b0c6e7a0c378361

    • SHA512

      c89d4e8b42fba84f7faa7076cf31d2a3289b043f3c3bc8777a938859f28cca30b052d3784d846bc1518448cebe33903fbd747e5ececca8df2eff2f94e051c86a

    Score
    1/10
    • Target

      PeProtector/main.cpp

    • Size

      1KB

    • MD5

      4faf3a3fbb1729793d298be7ce897f70

    • SHA1

      f58dcbb7e40ec9dd57598ac07ba5f8d7282a405a

    • SHA256

      443da4535960f665909de0b06945c0bfb879d1d4441bef71c1daa43a272c753f

    • SHA512

      1707e2f8fecb1f9350953529fb8b3a245cfbe9f5855ecf9b099a51e7f15e212b54270030753f22837fde972d69bab6cdd9246f23a90958424897bc5f20e4efc8

    Score
    1/10
    • Target

      XOR_Crypter/C++ Crypter/Form1.resx

    • Size

      5KB

    • MD5

      96ba0a444d087ae06f32319ca4f0a3e4

    • SHA1

      e3e08973b3d47c1ad51ccb133315b6242e275f0f

    • SHA256

      4d3ee9059f5b98ab1806f6916ebea2a8c56023f8c63ddfd80b7378d27d1aa0f6

    • SHA512

      571d4083c76428d8c3914b2bc1281cc79ed4603b5fe0e3e82ee58dad488fcfe7f797a45b0ea7f14841a2a100656f059c186b7338ce33beb910cdddbf9ee70cbb

    • SSDEEP

      96:ECf+lbD5X5LPXCazYV5Lv6K6uOidfaxwsxuUPFC3qxdRMvDbu8KsrbEKAy202lUt:Zf+tLPfYnLvFVOiFQaUD7Ut

    Score
    1/10
    • Target

      XOR_Crypter/UpgradeLog.htm

    • Size

      16KB

    • MD5

      626a4d3b21bf408ac41fd74852217c38

    • SHA1

      b559830e527f46884e32c0afe17c8ada5bbb640f

    • SHA256

      50a5d6d855e7d2e8331c9a76da5efd57bd42f7a7df6eae373ef8559cfe5aaec6

    • SHA512

      09373309d73b2f24b68aad841fd72a2c970ff5dfb20c2cea2f90605371ec531c7116ff6c2162adcc450d111a555ebe24b732473484c7df3971f3cf44f9ed2971

    • SSDEEP

      192:nBQmPV5gSJ+cYuc0yP+2cpQucamilKKjc3FeHWis+nw6Clf3vTfwT1GOkjbCT2RO:6/S/YF5Psyavjc1QWis+w6jT1gCG6

    Score
    1/10
    • Target

      cobfuscator/cobf_x64.exe

    • Size

      301KB

    • MD5

      23b334a7252a203d7175d7fd4f81b930

    • SHA1

      e30b0bbc0910baed416b3316ae953ea840c75952

    • SHA256

      3a58daffb99ad9c4ea38d90e5c993f50041080fcb04e802ec057325907d7a3fd

    • SHA512

      816e33b57b903542544e33f6ac82f68d62975db9a38cf89a1bfe0a737944d6244f833c51b585c4a872ced5f54e6f101339b88d172903519c1e1f26f0fd62416d

    • SSDEEP

      6144:YGeanoKKg91ZR+7zP+nKSIz28UkohHxSq2/3:fxHKg91ZRuslIqOo5U/

    Score
    1/10
    • Target

      cobfuscator/cobf_x86.exe

    • Size

      237KB

    • MD5

      816a008c2f4cd43778249a73a6926aee

    • SHA1

      f8f48785508bc4c7dd4b7a631dcc3b749dab0d9e

    • SHA256

      df10f2d3761499d3d3b35284f4568e76b84e527737cdea019cb1c8b4ba6ab6ac

    • SHA512

      b48c92c36d80d506280204fd3e6538a03de0b6e0da31e954e9b1b67f546b8c74736f856d0b74e9f3a8e663fdc871ef2350193887392719b286bbdf226dcae1dc

    • SSDEEP

      6144:MR+ucR1qEl9/PnhonYNrgOJVMJitsu6yKz8J1AON5:MKqElFPnhoW8Jfu6yo8J1d

    Score
    1/10
    • Target

      yetAnotherObfuscator_v1.1/dnlib.dll

    • Size

      1.1MB

    • MD5

      5cc2bb48b5e8c8ac0b99669401d15456

    • SHA1

      02e9ae08f3ec364834eb3ffc122f1c90e1b0e95e

    • SHA256

      648950f725fb0320e09c52dcaf81764916df96dc62e7429ba67daea0acb784ea

    • SHA512

      2867e94cee9f89f1cf85ad01083d75f4bc0bc0e551b2ffae05581828994f2b01a458ac7a7c94a45e8c40858ecce197f7ec23482ee13ef3f1bf82b33b89b3b420

    • SSDEEP

      24576:/bN7xZgKVl/N12pljD7DM2l8xs5A/zYv7flNcK:DyJXn3ML7G

    Score
    1/10
    • Target

      yetAnotherObfuscator_v1.1/yetAnotherObfuscator.exe

    • Size

      12KB

    • MD5

      bf0ee7e2ac54dd82b830b54e439ad686

    • SHA1

      69d5fcfc622f3a9e57c8e3d69c5ce4e039b2f0c6

    • SHA256

      85c138984bc3de50ffe8e1085417fd0fb95b651904fa806c14e5768b7eee45b4

    • SHA512

      db31d5ae181791d3bf7e09d6a5d91c40529dda796946f3ba063b40e0a411c3bd7cad0129d8c8d1133d422e6a5fc69f8ef37e84fa6c79b172c4498e224be20fa2

    • SSDEEP

      192:hFNaxeoMGntID65Rz7mXed1CtILfIETAltGPA9mXRy6SEZakpQ:rNwMGY65RmOd1MpmA95EzpQ

    Score
    1/10

MITRE ATT&CK Enterprise v15

Tasks