D:\a\_work\1\s\artifacts\obj\win-x64.Release\corehost\apphost\standalone\apphost.pdb
General
-
Target
Elsify Universal by FrostChanger.de.exe
-
Size
21.7MB
-
MD5
5af5f8511ba1253e15e3fb8048480678
-
SHA1
8400a604bce1811e92bdbfa3b8b32bad2ac2bcb0
-
SHA256
9ecab3353d42b402b082f307e9fc40c335fc9286f21d7566167ffa0ce8a2475f
-
SHA512
f0c9b322c57344e784df683f0c3a4b2bcb5eb136e9f456c2b88d9041236e038296634d80899306d4e727bff412b6dc67799916a1f181bd506ed5715bf472e7df
-
SSDEEP
196608:NwRSn6y+hcqXzXTVrlWhERb1ReeVG2COpDNMyrxxAwRSn6wcn23/R0tbz5O2KVBE:oHzXTVYhDe7CmNhrsRfBXcXidtMPD9T
Score
7/10
Malware Config
Signatures
-
.NET Reactor proctector 1 IoCs
Detects an executable protected by an unregistered version of Eziriz's .NET Reactor.
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
Elsify Universal by FrostChanger.de.exe
6a91eb82bfd19d2706c7d43c46f7064e
Headers
Imports
Sections