Overview

overview

7

Static

static

7

8296ff8b39...67.exe

windows7-x64

7

8296ff8b39...67.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8296ff8b390699cdda98f4a61bac2ab17f0a075af148de4c661197b25eea1c67

  • Size

    5.7MB

  • MD5

    79b72f606ff97f7948ca1baac83eae0b

  • SHA1

    987af67de08329ece39105b3475c536d57a7e323

  • SHA256

    8296ff8b390699cdda98f4a61bac2ab17f0a075af148de4c661197b25eea1c67

  • SHA512

    d995768bc3db9d05801e4ca36f50d5524efc904d2a18eacdc5d073488d319afe2b2bfdeb3c68eb79a9e6109596a3dd88b5389e0882f2d6412c73ea0f9f4c37b1

  • SSDEEP

    98304:ugjxQuhjdvyMI6oIUwFjurH4dwDpz4gNWjn2G6MZJbHX879txWAYA:ZjxQutttPozwFjuj4dwDpz9y2GpZJbHZ

Score
7/10
agilenetvmprotect

Malware Config

Signatures

  • Obfuscated with Agile.Net obfuscator 1 IoCs

    Detects use of the Agile.Net commercial obfuscator, which is capable of entity renaming and control flow obfuscation.

    agilenet
  • VMProtect packed file 1 IoCs

    Detects executables packed with VMProtect commercial packer.

    vmprotect
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 8296ff8b390699cdda98f4a61bac2ab17f0a075af148de4c661197b25eea1c67
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections