General
-
Target
Client.exe
-
Size
34KB
-
MD5
de2ff0cf683f97d87c97a84a0bdeb49e
-
SHA1
52a3d2012d8dde1e131f4c8e060d193e2f1237cf
-
SHA256
62566a803d4f1d485a6df2a9fcd7af4861631e77785b973844e668dda51c74f0
-
SHA512
56c169cdf07c47ca5e0c51507c0c02b1d01a183c9536eb74eeb2e432cf954812a37a9af2974f0cc48cc5e2dadbab73c530e82e2048163c1c3389848b8e58da4e
-
SSDEEP
768:QpNkDJkjKB41eZuT0dm9joyZwPhtbPn9BX3qJKhSdN38:kNkDNB41eZw9jonR/9N3qJKhsh8
Score
10/10
Malware Config
Signatures
-
Contains code to disable Windows Defender 1 IoCs
A .NET executable tasked with disabling Windows Defender capabilities such as realtime monitoring, blocking at first seen, etc.
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
Client.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections