General
-
Target
XClient.exe
-
Size
194KB
-
MD5
358d1b1eddfa757aa05845ded0037a08
-
SHA1
7c6f873391e792842014303b7d8fb6364b68c1ac
-
SHA256
a450902ab90c0eb56aa493443e5cd1ed3f5a6fda3bae21548ffe811a7af0db3d
-
SHA512
09bfef844b7ed8a78033ea45f8f9034adc1669900950bbf73190f5dc8d9e9c41b58958f05a46bdfbd337f6ef868170b6346e886058567cc839d4013d0511dcaf
-
SSDEEP
3072:oSoTIfEMHf9nA/rWc+8fOS1roD3sOUFQbyb7vCvEZ76mWpE95+aHVPz2:YIfEMln6191roD3sOkQub76MZ7bQwl
Score
7/10
Malware Config
Signatures
-
.NET Reactor proctector 1 IoCs
Detects an executable protected by an unregistered version of Eziriz's .NET Reactor.
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
XClient.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections