General

  • Target

    Elsify Universal by FrostChanger.de.exe

  • Size

    18.7MB

  • MD5

    c4e7c21c470314cec48770bdd6557a7e

  • SHA1

    fa5e175cb1dbbbf8ebee99d8bb4795c401cb15a9

  • SHA256

    e51cbe96e3a9d5ec82b78ded4a570093fed54604a21b36707aa3f1dc216abdb6

  • SHA512

    255b8605651626489f3490869db7556348b0d8a880da91c91ebe2f636e9ffd7ce43d254c4d811186238bd9eb396fb5e155adc3e952d4a634005b3ddd069fce93

  • SSDEEP

    196608:ZwRSn6Y/SXTVrlWhERb1ReeVG2COp0NMyrxxAwRSn6wcn23/R0tbz5O2KVBXrBqS:J/SXTVYhDe7CPNhrsRfBXcAidtMPD9h

Score
7/10

Malware Config

Signatures

  • .NET Reactor proctector 1 IoCs

    Detects an executable protected by an unregistered version of Eziriz's .NET Reactor.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • Elsify Universal by FrostChanger.de.exe
    .exe windows:6 windows x64 arch:x64

    6a91eb82bfd19d2706c7d43c46f7064e


    Headers

    Imports

    Sections