giftsoft.pdb
General
-
Target
eac57bf17167bcbcc7b97279af101286.bin
-
Size
2.4MB
-
MD5
a91da921476bc81c6117b10779a813bd
-
SHA1
1f812cfd80a14655e3d68a2292db113d4713b7f9
-
SHA256
aaddc14daa7d34050d1f617e0d3193d5ec50b498188b0fc977acb9a78f6ff672
-
SHA512
7c5fa3b7144e1c76947cf1b0be218adb03e2f3786c7b4b912f6b51d53a74f5ef22542ca462420beebb879bae974ba997521e08b4f511a7eb767560cef35af18d
-
SSDEEP
49152:DEB7npFUnycRbMJvB8L9juGtRebni4ragIJADA9EH74z:DY7n8DRyvyL7zebnDQCDA9EQ
Score
7/10
Malware Config
Signatures
-
.NET Reactor proctector 1 IoCs
Detects an executable protected by an unregistered version of Eziriz's .NET Reactor.
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
eac57bf17167bcbcc7b97279af101286.bin
Password: infected
-
b0298a97ebb4c9fdcdc38b916343639e78d8ddc92832ac95707a6d9f83fbd68a.exe
Password: infected
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections