Overview

overview

10

Static

static

7

winprofile

windows7-x64

10

winprofile

windows10-1703-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    b5fb7215504af6ca9d9a86466306ad0d64854aaf98c853ecae09cf6cf41fb691

  • Size

    3.7MB

  • MD5

    1cbf7aa135194f187c0dc22c2f15552c

  • SHA1

    5252dfc65dbb7ec6a0ed6d5417fa7150fc5f7116

  • SHA256

    b5fb7215504af6ca9d9a86466306ad0d64854aaf98c853ecae09cf6cf41fb691

  • SHA512

    9e3f0de99b0ee76e4c6f2d62441a211a3e55739fec15bff8c05bcdb51380b687a3cdd064a6f8cacdf6b2becfa857625bad4f77ac51115815671e6c266d86e823

  • SSDEEP

    49152:AGhMCjM+BdWXGp8mih7NUfXUu4tEqNrqcqapPeDkwVzMemuYTwB5Su7Q:ABMIG/Mul2rq/aReDkizMeQUK+Q

Score
7/10

Malware Config

Signatures

  • .NET Reactor proctector 1 IoCs

    Detects an executable protected by an unregistered version of Eziriz's .NET Reactor.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • b5fb7215504af6ca9d9a86466306ad0d64854aaf98c853ecae09cf6cf41fb691
    .exe windows:4 windows x64 arch:x64


    Headers

    Sections