General

  • Target

    EA Crypto Hunter v4.0 MT4.rar

  • Size

    10.8MB

  • MD5

    1137667d7029b58692250444ce1368e8

  • SHA1

    2caecddf632e35f74608e6dec91e01ea44ee330c

  • SHA256

    c738e6735c575421100a31108799e1c577d83e0feeae0cc8e974d10f642fc5c8

  • SHA512

    cb907117844309ef74e477f5536292b924a04e7ee7a9cf2a479106fe7d6afe576112c0dd3f20cd6892396fe0cb7ceeb4c5ce26d602555b2e8c2d363a6a1a199b

  • SSDEEP

    196608:dYQ3xZrRuwHp6OrF4Wr3JjEFgoEbaHpQxXYNPU6ECy6lyHYdSNCQCEQP:1x9xJvFZJoDExYNPUdQAYq5QP

Score
7/10

Malware Config

Signatures

  • VMProtect packed file 2 IoCs

    Detects executables packed with VMProtect commercial packer.

  • One or more HTTP URLs in qr code identified

    Detects presence of HTTP links in QR codes.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • EA Crypto Hunter v4.0 MT4.rar
    .rar
  • EA Crypto Hunter v4.0 MT4/Experts/EA Crypto Hunter .ex4
  • EA Crypto Hunter v4.0 MT4/GNR-ForeX.jpg
    .jpg
    • https://t.me/indikator_g

  • EA Crypto Hunter v4.0 MT4/GNR-ForeX.txt
  • EA Crypto Hunter v4.0 MT4/Gendor.jpg
    .jpg
  • EA Crypto Hunter v4.0 MT4/msimg32.dll - Build 1335-1350/msimg32.zip
    .zip
  • msimg32.dll
    .dll windows:6 windows x86 arch:x86

    e5826bdd574644f867c97b25acd0860c


    Headers

    Imports

    Exports

    Sections

  • EA Crypto Hunter v4.0 MT4/msimg32.dll - Build 1335-1350/msimg32/msimg32.dll
    .dll windows:6 windows x86 arch:x86

    e5826bdd574644f867c97b25acd0860c


    Headers

    Imports

    Exports

    Sections