General

  • Target

    RexonFREE (4).dll

  • Size

    2.6MB

  • MD5

    3dc33b3a2854a6738b9f567ce6defe72

  • SHA1

    6a471ff2626a38c800fa33fd83b11e8d825d83f3

  • SHA256

    4a063b4c2b88380d6353b65cd97e8ddf16bc217fe36923cf763ff5bddf531c35

  • SHA512

    b8d97cf7f273c23eb203cc92b045ef1788df082f13deb36671adc843936a920dd5de3ba20bd1544e85cf82e7db5dd36ca70e88c0c751ef43d229847e5e27379e

  • SSDEEP

    49152:WqU1QHxZUnyIFt/hvu3AWCqh9sJe+rJKwZzA+UgUAEYdWouS9K17UVL41RLp/Pnt:7Hr+4R1BmO3eoSZ5JXckdZt

Score
7/10

Malware Config

Signatures

  • .NET Reactor proctector 1 IoCs

    Detects an executable protected by an unregistered version of Eziriz's .NET Reactor.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • RexonFREE (4).dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections