C:\Users\SerGreen\Source\Repos\Appacker\UnpackerWindowless\obj\Release\UnpackerWindowless.pdb
General
-
Target
lol.exe
-
Size
20.3MB
-
MD5
1da87056da8166d6ed5e04d81aa5522c
-
SHA1
f3f81e8e0b116627682ae03ed6f004b2ac46f464
-
SHA256
7bfea7f092cf7638322f351474791f12b66ec22c66f0872f3488256839bc4c45
-
SHA512
cd9e5b62cc6918cc496dec0ab610a2d00c88d7e8285521730faecf881892070886c91ef9e0930f579e26d1cae20d09e0b233b365cdeabab4c29957c28e0e1b0f
-
SSDEEP
393216:PzuEpuRT4xFrlZfl23p33X55EWheYkv8LlCTe2x:v4RerlLa3nTEwrkACTec
Score
10/10
Malware Config
Extracted
Family
quasar
Attributes
-
reconnect_delay
3000
Signatures
-
Detect Umbral payload 1 IoCs
-
Njrat family
-
Quasar family
-
Quasar payload 1 IoCs
-
Umbral family
-
AutoIT Executable 1 IoCs
AutoIT scripts compiled to PE executables.
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
lol.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections