General
-
Target
file
-
Size
698KB
-
Sample
240130-ct9klaggaq
-
MD5
bf2a3e48b0ea897e1cb01f8e2d37a995
-
SHA1
4e7cd01f8126099d550e126ff1c44b9f60f79b70
-
SHA256
207c4f9e62528d693f096220ad365f5124918efc7994c537c956f9a79bcbadd3
-
SHA512
78769b0130eed100e2bb1d0794f371b0fa1286d0c644337bc2d9bbe24f6467fd89aa8acf92ac719cc3c045d57097665fe8f3f567f2d4297a7ee7968bbab58b91
-
SSDEEP
12288:mh1Fk70TnvjcDopmEUd4+rL4VZvvApKFuzWMfJoacb7hj30Cq7rc4p/2:Ak70TrcDopfE+wUFuzW3NFgdrJx2
Static task
static1
Behavioral task
behavioral1
Sample
file.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
file.exe
Resource
win10v2004-20231215-en
Malware Config
Targets
-
-
Target
file
-
Size
698KB
-
MD5
bf2a3e48b0ea897e1cb01f8e2d37a995
-
SHA1
4e7cd01f8126099d550e126ff1c44b9f60f79b70
-
SHA256
207c4f9e62528d693f096220ad365f5124918efc7994c537c956f9a79bcbadd3
-
SHA512
78769b0130eed100e2bb1d0794f371b0fa1286d0c644337bc2d9bbe24f6467fd89aa8acf92ac719cc3c045d57097665fe8f3f567f2d4297a7ee7968bbab58b91
-
SSDEEP
12288:mh1Fk70TnvjcDopmEUd4+rL4VZvvApKFuzWMfJoacb7hj30Cq7rc4p/2:Ak70TrcDopfE+wUFuzW3NFgdrJx2
Score7/10-
.NET Reactor proctector
Detects an executable protected by an unregistered version of Eziriz's .NET Reactor.
-
Suspicious use of SetThreadContext
-