Overview

overview

10

Static

static

10

2b8652ca94...c6.exe

windows7-x64

10

2b8652ca94...c6.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    2b8652ca94dad29260004c12456e1bc6.exe

  • Size

    553KB

  • MD5

    2b8652ca94dad29260004c12456e1bc6

  • SHA1

    132450c8926fb19230a0c627fa34d759bb3557e7

  • SHA256

    ab46ea9e8a967b71edd17e24993c428336490f63b3765a917e738494d088f16a

  • SHA512

    e96ea8783ed482d87e5c52a3f5dd07e4a18e5f09cb445dc8d11e09e3a205dd57807fd509d2bd7bd0d3b98a2dd584c87bf96b73cc14dd064daea9168217cf206f

  • SSDEEP

    12288:HwubUmgAbNyKkB6rdrTWmNEX9q89Sesl81TwALJAteHcP0Xm6Ckk/47ZUeHcJy0b:HdbuKkmEm

Score
10/10

Malware Config

Signatures

  • Contains code to disable Windows Defender 1 IoCs

    A .NET executable tasked with disabling Windows Defender capabilities such as realtime monitoring, blocking at first seen, etc.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2b8652ca94dad29260004c12456e1bc6.exe
    .exe windows:4 windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections