Overview

overview

10

Static

static

10

eca1d63dae...fN.dll

windows7-x64

1

eca1d63dae...fN.dll

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    eca1d63daedb50a8b59735aae2fd40a9110068b4e1427568c0ad0c7311d2401fN

  • Size

    30KB

  • MD5

    fd4890f4cd5f4d66c68f3a7cb0afa050

  • SHA1

    5c824508ba17ceacb40fa76a7352f42fdb77779c

  • SHA256

    eca1d63daedb50a8b59735aae2fd40a9110068b4e1427568c0ad0c7311d2401f

  • SHA512

    f4a39ddc739b15f4bed220e80348f1eb11cfba04751c167bad3f88bbd7ec1dc044a1e759ff21bb1ac076e046ce5d40a06cdb38b1ee09b5e1ecbaa92054323ef9

  • SSDEEP

    768:oLxkuz7dDWH839iybgkf/sGRNW9c9dhjcI:oLNHqUPbgQsGRNW9c9

Score
10/10

Malware Config

Signatures

  • Contains code to disable Windows Defender 1 IoCs

    A .NET executable tasked with disabling Windows Defender capabilities such as realtime monitoring, blocking at first seen, etc.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • eca1d63daedb50a8b59735aae2fd40a9110068b4e1427568c0ad0c7311d2401fN
    .dll .ps1 windows:4 windows x86 arch:x86 polyglot

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections