Overview

overview

9

Static

static

7

bat.win_hw...rn.exe

windows10-1703-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    bat.win_hwid_spoofer_reborn.exe

  • Size

    5.3MB

  • MD5

    24766529c82e4bf004882b7e36ac64cf

  • SHA1

    4f493c3615be610039b9a6da4eba4dd5c9936113

  • SHA256

    a0e6ac8f4f9c59b8acc0602ba456b1ae0d325f9b9624a1cb1c01d25d83b30861

  • SHA512

    86385d1033022cf633c03b5643369e35cf3bc8ff70639c29b26305457d02d18798d9132196a87c903b268424a8ab265d3017706764cd93e394fbc75b43de460e

  • SSDEEP

    98304:gPcKvq0dqJLKCk8UvlyAuInd3cUrXpUc2dqLVs3wkKg:gPc7XLKKU9PdsMXagLVs3wkx

Score
7/10
vmprotect

Malware Config

Signatures

  • VMProtect packed file 1 IoCs

    Detects executables packed with VMProtect commercial packer.

    vmprotect
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • bat.win_hwid_spoofer_reborn.exe
    .exe windows:6 windows x64 arch:x64

    dcc662e549cf73a89f2b648bcdfe25c1


    Headers

    Imports

    Sections