Overview

overview

10

Static

static

10

2024-06-29...ar.exe

windows7-x64

9

2024-06-29...ar.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-06-29_8e209c04bb2d35077ec7660f0a5441f7_hiddentear

  • Size

    360KB

  • MD5

    8e209c04bb2d35077ec7660f0a5441f7

  • SHA1

    5192050aaf3d50e627451d2e2168d5afddb42df4

  • SHA256

    4f6658bc50f46c4538df17e1ad667a0394e13651556fabe6f3f28fcf8e947d9a

  • SHA512

    0bd180c21fdc926935fa172db5870817c3b3907458d41c1f0196f8dfb74dc2eb47175775891ff9bcefbe08afb28ff013152f2437a927074546b693491fdb1756

  • SSDEEP

    6144:KtnuIE1JkOjj+gYmIB2cHZUqODDMJTTaEsWIpG+lDAA:RIIJm70c6b6a6EVdAA

Score
10/10

Malware Config

Signatures

  • Detects executables packed with unregistered version of .NET Reactor 1 IoCs
  • .NET Reactor proctector 1 IoCs

    Detects an executable protected by an unregistered version of Eziriz's .NET Reactor.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2024-06-29_8e209c04bb2d35077ec7660f0a5441f7_hiddentear
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections