D:\MyWork\برمجة\gom_v_4.0\update_windows10\update_windows10\obj\Debug\update_windows10.pdb
General
-
Target
NZqhGfqWq.exe
-
Size
536KB
-
MD5
bc389e564d09707cc36671f296665afd
-
SHA1
09448c0068106bbf674cae0d7dbb838e469dd896
-
SHA256
07f3462682d325ceac97d83e7f3d678ab56b9d1b74a51ad6ef6ff49767e30c3d
-
SHA512
25ea85dba05ce62fcda6d5621d9ef157c24a4037895513c6ca691e74406e25d1f0f0a57a546a5ba5e8cbee0371cc9f285a7e1c6f91bd6c20e29a9a1b3f58d931
-
SSDEEP
6144:X+BWmtpZQYS2PjCLfjSCpkALDUbr0tJ0nzbWdG/Wow7+JJU8:OPw2PjCLe3a6Q70zbYow608
Score
10/10
Malware Config
Extracted
Family
predatorstealer
C2
http://unseamed-semaphore.000webhostapp.com/Panel
Signatures
-
Predatorstealer family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
NZqhGfqWq.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections