General

  • Target

    Expensive.dll

  • Size

    6.3MB

  • MD5

    5808a4648b6412df885afc8ed89a5506

  • SHA1

    3e88eeedc30387658afa8313020b996f700f1b2f

  • SHA256

    94fe6dbe945913d47923ff31b16180997a9273de2e2cd6fd76e6b06e228fb5b3

  • SHA512

    6a38285a645577aacc2f32804c6a8e2b88f42eb495a8083c14d6bd422ccaa1a9e0bc8f4f715c2b8ec89354a4871239553f70c9794bf3b85a7535a8e636a51f15

  • SSDEEP

    98304:ltvX9ZVfebgQkI8V9ux8YMMV8fE6lRCx/kNM1LFQfbuMtW8OdcbDHv3uHxDkWjK5:T9Hfeb259EMdlRkcuobusW8LuCNpX

Score
7/10

Malware Config

Signatures

  • VMProtect packed file 1 IoCs

    Detects executables packed with VMProtect commercial packer.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • Expensive.dll
    .dll windows:6 windows x64 arch:x64

    500084f35532fdcbdfb79cc6b6f0a984


    Headers

    Imports

    Sections