Overview

overview

10

Static

static

7

b0b7e05479...df.exe

windows7-x64

10

b0b7e05479...df.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b0b7e0547949400674954396d6dd3f9ce820f608eb8063b1c9d86f3e3d16f2df

  • Size

    232KB

  • MD5

    048af131c128c4f3d61e2f8311a0d789

  • SHA1

    6499aaffdef17532166f4e6b023b5b5e9c2a3a74

  • SHA256

    b0b7e0547949400674954396d6dd3f9ce820f608eb8063b1c9d86f3e3d16f2df

  • SHA512

    8ecf9f80ed6651dda257215f80a9fdaca1f19a1833a0968e67d943bea6a654ff59e828085d69f7a10e05e32290d3b2a28355179f3b367b86abb3781f69451c32

  • SSDEEP

    6144:sGzuTmcrilEBufkto5AoYfqyoVxxGMOr6ulkLAl9sUgvoplt:sGuTKlEBu8t6zYyyowWulA6sU1r

Score
7/10

Malware Config

Signatures

  • .NET Reactor proctector 1 IoCs

    Detects an executable protected by an unregistered version of Eziriz's .NET Reactor.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • b0b7e0547949400674954396d6dd3f9ce820f608eb8063b1c9d86f3e3d16f2df
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections