General

  • Target

    13b1509db95d309415baf5a5569b4fc4f3a12a36c6e49185716514d9ddbd2e03.zip

  • Size

    2.9MB

  • MD5

    0aee3013b64b4773bfa7fa39107ed222

  • SHA1

    a8eac1bc043cee608790086151ac95b7069414dd

  • SHA256

    f04e2aa32533a15c9f1946d0b9e6b490133a32058c73fa9433e791174fc061a6

  • SHA512

    e3b6e12a8a09f313ccc438b895a27daa84d39e462ea96298b079b94718950900169cdae61d5b870a8e70419b562fc8181000e5725223bd05aeef1be8f02a9d0d

  • SSDEEP

    49152:/y/GtblbPd8LXQpuYsSbzRYdDWbyhADPmoaR7DNp8oKSJw6C63M3:/HRp8LXQwohsDWDPm7D4oZJw6CuM3

Score
7/10

Malware Config

Signatures

  • .NET Reactor proctector 1 IoCs

    Detects an executable protected by an unregistered version of Eziriz's .NET Reactor.

Files

  • 13b1509db95d309415baf5a5569b4fc4f3a12a36c6e49185716514d9ddbd2e03.zip
    .zip

    Password: infected

  • 13b1509db95d309415baf5a5569b4fc4f3a12a36c6e49185716514d9ddbd2e03.exe
    .exe windows:4 windows x86 arch:x86

    Password: infected

    f34d5f2d4577ed6d9ceec516c1f5a744


    Code Sign

    Headers

    Imports

    Sections