General

  • Target

    Paypal Receipt Generator.exe

  • Size

    394KB

  • MD5

    45d32de470036e2a573e49d62824ae2e

  • SHA1

    d8316e0665b8a8cff11e7f6cb0c45c804ffa1912

  • SHA256

    724e8f7a91ca361b6e56c683f59ba9ab9cd48433ab5197eb6b17fa9b23398ca8

  • SHA512

    9e1f6256f1c01c5ca5e1bc827bd10f8174de5ddee408e69ce6b3e4e4c4ffd62d35186f50ada99ea168c424c2a49585b2cf959c1ab3007d2bb91400d9f81084ce

  • SSDEEP

    6144:k9sSMWzr9x5wDvDS2w2CiJxH8id0aupIog6kh31cpAqMaFKAm+:/SMOj5wD7ScLdOkxWlFxm+

Score
10/10

Malware Config

Signatures

  • Detect Neshta payload 1 IoCs
  • Neshta family
  • .NET Reactor proctector 1 IoCs

    Detects an executable protected by an unregistered version of Eziriz's .NET Reactor.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • Paypal Receipt Generator.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections