C:\Users\SerGreen\Source\Repos\Appacker\UnpackerWindowless\obj\Release\UnpackerWindowless.pdb
General
-
Target
vir.exe
-
Size
299.1MB
-
MD5
8446764640bdf4bb428f370e11779aaa
-
SHA1
f30da6067c4bec7b9bab35358fb9f8dac049c473
-
SHA256
10e2c6a8bd727fdd13c292d295f77eadaeda281a95ca21471e565eee8016baab
-
SHA512
e05efadfc1eb98d60a59dc8da6cc5e06700d10e38d1c6cf2411f3112ac4ff7e5e2fcd11c326f751e93878d0108204dc6a550289aa1523e810c5857089d27dcc6
-
SSDEEP
6291456:QKJdHVeV6odBeWFv1k4R4b0ewZkhT4ofHwJjvZDQPf2tLSkHI:QKvAQWeSWgfecGT4RjvqP85o
Score
10/10
Malware Config
Extracted
Family
quasar
Attributes
-
reconnect_delay
3000
Signatures
-
Detect Umbral payload 1 IoCs
-
Njrat family
-
Quasar family
-
Quasar payload 1 IoCs
-
Umbral family
-
AutoIT Executable 1 IoCs
AutoIT scripts compiled to PE executables.
-
HTTP links in PDF interactive object 1 IoCs
Detects HTTP links in interactive objects within PDF files.
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
-
NSIS installer 1 IoCs
Files
-
vir.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections