General

  • Target

    8fd7c85cb1bf8a237c915d4dbc9c2db6

  • Size

    154KB

  • MD5

    8fd7c85cb1bf8a237c915d4dbc9c2db6

  • SHA1

    073dfeba4407cd9f116e10b892d9d83302ad313f

  • SHA256

    0a1cceaf54f5cf647d65936db2b66dc64371bbb6ed2639dbc1bea1860f057d6c

  • SHA512

    7f95cb25de38b3c5580e0b24f9b7930d10d3fa7728e3a4c8ee09eb0dd5fa3d9ed625d59153839941f72dac5edb415fd22e86ded2b49c52e55b63bb06f3ab70e5

  • SSDEEP

    3072:C22ihA0m3BJP0AbUYhKsbujmvU2ri4/hXX7MSx/:9A0m3D0AvKxjmvUMlVMg/

Score
3/10

Malware Config

Signatures

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 1 IoCs

Files

  • 8fd7c85cb1bf8a237c915d4dbc9c2db6
    .exe windows:4 windows x86 arch:x86

    28a099a911237a28521d8b7ea250f089


    Code Sign

    Headers

    Imports

    Sections

  • $TEMP/BetterInstaller.exe
    .exe windows:5 windows x86 arch:x86

    a4c55d31aae4cee4e230a48344d6a88b


    Headers

    Imports

    Sections

  • $TEMP/config.ini