Overview

overview

10

Static

static

10

d368d519ac...12.exe

windows7-x64

10

d368d519ac...12.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    d368d519ac1606bd0be8157aa2c17fa9b38497dde90803d0395000f105d95012

  • Size

    1.9MB

  • MD5

    93ad123f4f1ff5508a0cc12c243ff1dc

  • SHA1

    4b61960d95a51fc1c5bb103cd0459ba361c1a287

  • SHA256

    d368d519ac1606bd0be8157aa2c17fa9b38497dde90803d0395000f105d95012

  • SHA512

    82317ca6a016f94c0958c5675fb2b05b85eb6b32e22c64a4f7d4a6b9b59701f40672c3f12e547fd3f75783dded7666aeb5240b60fa76181cccea81a1cf7d1a3d

  • SSDEEP

    49152:knsHyjtk2MYC5GDqaTq24GjdGS9hWb2J3Y2pg:knsmtk2aZPEjdGSGb2Jo2S

Score
10/10

Malware Config

Signatures

  • Detects Windows executables referencing non-Windows User-Agents 1 IoCs
  • Detects executables (downlaoders) containing URLs to raw contents of a paste 1 IoCs
  • Detects executables Discord URL observed in first stage droppers 1 IoCs
  • Detects executables manipulated with Fody 1 IoCs
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • d368d519ac1606bd0be8157aa2c17fa9b38497dde90803d0395000f105d95012
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections