General

  • Target

    GalaxySwapperv2.exe

  • Size

    11.9MB

  • MD5

    cd1c931046a4c3a409324e063dac7115

  • SHA1

    add3635130fe2171df543ff70ef6d631de2b0367

  • SHA256

    74246f654724b1bc50db79b362e2a190cb9ace52f8a0ecb18db8f25e51ce6f78

  • SHA512

    33fba5853a974bd059b042aa91422fca0249547ce38d7a8f6d6d785f1bbfb8f0ff69d8053ce5100404398214e0ad385b6786d1da3895ec56586f75a5b904174d

  • SSDEEP

    196608:HKe247cphG8nxS3JYw2VffH9caHOb6Le2BZiHhWWiVbMOVvu8ovcLFwiN:f2eYG8maz/CGicWiVbMOVvuxvcL+iN

Score
7/10

Malware Config

Signatures

  • .NET Reactor proctector 1 IoCs

    Detects an executable protected by an unregistered version of Eziriz's .NET Reactor.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • GalaxySwapperv2.exe
    .exe windows:6 windows x64 arch:x64

    72bc4dfff8905033c11dea0c671a7919


    Headers

    Imports

    Sections