General

  • Target

    159f657fbcc6e984293395b6c292b57bcdb6ebdc9cd5fd8551452260a99299ed.exe

  • Size

    10.9MB

  • MD5

    84437f486f1e217d9632eb422501fe71

  • SHA1

    21d6b1b128f29b449769f73ad30144da25429a8b

  • SHA256

    159f657fbcc6e984293395b6c292b57bcdb6ebdc9cd5fd8551452260a99299ed

  • SHA512

    c766fd25e3b3e95ddf3bb7750c5dac381c9be30a16f539534009a83295832f8c4cb6b325806c3d2115ad0f97fff7fd3192386f6a8296aeb7d6393b174390209e

  • SSDEEP

    196608:K1ZYTxxaKXrPz9H2P/+BluqDpjiK299pl8sj864GjID4C8:DsKXnVDRQKshr864GjID4C8

Score
10/10

Malware Config

Signatures

  • Quasar family
  • Quasar payload 1 IoCs
  • Themida packer 1 IoCs

    Detects Themida, an advanced Windows software protection system.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 159f657fbcc6e984293395b6c292b57bcdb6ebdc9cd5fd8551452260a99299ed.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections