Overview

overview

10

Static

static

7

W92HQMf.exe

windows7-x64

10

W92HQMf.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    W92HQMf.exe

  • Size

    3.6MB

  • MD5

    321bb188a451ff7d85e815a89bfbf79f

  • SHA1

    fcd297aaa0d97932510c3e94f5b7e188c5a381ea

  • SHA256

    db6f0d1778cb68d5d184b6a93bd8fbf0cd0bc8e762f91646cb225bafe1a7c478

  • SHA512

    7f1186efb4ae22f036a4323341c778d27a96594ec4bd299a9643cdfe6fbe7ed6bc50ea81315796d2c2b83a7b7b56c3fc132ecf324b4cd14c7e110cf82574d021

  • SSDEEP

    49152:JKldlQZUkylh161ucIoY1sV1FdqSGspHJQYeEp82L00WgyRUs27+K/hoD3w3S:JAfAU01uci1sXDpQYeEp82QrUB7V3S

Score
7/10
agilenet

Malware Config

Signatures

  • Obfuscated with Agile.Net obfuscator 1 IoCs

    Detects use of the Agile.Net commercial obfuscator, which is capable of entity renaming and control flow obfuscation.

    agilenet
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • W92HQMf.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections