General
-
Target
playmodebest_assistant2.exe
-
Size
3.1MB
-
MD5
d2e3ce23869fc9606900da37eb4ef04a
-
SHA1
a186c957f482b768c766b2f1d6add1be312c5bb0
-
SHA256
9c57424b6a663fe8b030201a735b2f2ee834370cd53e16e59a96978e1855497c
-
SHA512
7ec60713acd760ac072f97e14814ecd0bd2e5bd148e415c177af608b3b0373ea174085a52c4e2cb679415cd85df54c36d75278888b687bd65c21e4615f15067c
-
SSDEEP
49152:FxlGgSo1bRLOZPA7GlQybmlAkALRm5GFCYr5oiO4bDPCm8P:Fxl1QZICSFlAxHCo93HA
Score
7/10
Malware Config
Signatures
-
.NET Reactor proctector 1 IoCs
Detects an executable protected by an unregistered version of Eziriz's .NET Reactor.
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
playmodebest_assistant2.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections