General
-
Target
davinci_egr_dpf_dtc.exe
-
Size
3.1MB
-
MD5
da11f148f2787176d5e3788bf641fd0d
-
SHA1
cd5a42e20a681f39bd2f3d7911b4b577e311bda0
-
SHA256
0911132992bcecb23a961ef75982d9ee095d2a56beec61db7bc8cd1472ea0948
-
SHA512
c563fd44cfdf2aa25c54c5daa149e5c0e617ce7c2c3f5796dca08e413d7aed23a33bc784440ed2e370f8a508be121ef38c163ad7aab2ff4c0e4edca312cad702
-
SSDEEP
49152:gVGVBYxG9rPJH8DqWeV0PfLTOzVRsa8BapRSgzxoD4zxoDt5VsKEIjtm3:XVBYxG9rPB8Dq1ufLaAaeEyEy/V
Score
9/10
Malware Config
Signatures
-
Beds Protector Packer 1 IoCs
Detects Beds Protector packer used to load .NET malware.
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
davinci_egr_dpf_dtc.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections