General

  • Target

    Anarchy.exe

  • Size

    16.1MB

  • MD5

    56373fb76365e161485614ff91d4030b

  • SHA1

    e2429e6e2953a948e8756a5ff7e87a68bdceabd2

  • SHA256

    e208fae2282697cdce4471ce296d4750743acb5b8e7ff09217667a69041243a7

  • SHA512

    27c8138c50b473121694b9ce4412d9757b7d74299df25aa5a6693578f05039c6d2f30367100732f16bbff42c78a8d27176d39a0c71d090ec5f18a70d31f1f40c

  • SSDEEP

    196608:i5CpPOu/P8G2eee0yMRs4vkmXaU7aIObk9fcdHJDLscmZk36zOAE2A1cZF7sL9YR:s+r0TaZ1LmZ+F1cby9YN/X

Score
10/10

Malware Config

Signatures

  • Contains code to disable Windows Defender 1 IoCs

    A .NET executable tasked with disabling Windows Defender capabilities such as realtime monitoring, blocking at first seen, etc.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • Anarchy.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections