General

  • Target

    SecuriteInfo.com.Heur.29270.15038.exe

  • Size

    682KB

  • MD5

    b450c67cec185fc600a3c94706755995

  • SHA1

    8fa9bb21b42bde86271fb68be083509e5a788b8b

  • SHA256

    06aa63af0f288fbd571174a0b72ba6d78244628b3f7ebd1ac1a7a59908ed1111

  • SHA512

    a7980b092d6b6125ab4fd64d02428d6c9bf644fec04e7006925d677c8ee6d8190276a1151feb8d51340c859226c25cd7ebe7419d9fc3d097c8c39d95d204ddce

  • SSDEEP

    12288:8Pfo6QDAuCw2HuXS/RdTnT54WOWFvKlpO2H:83o6QDavAS3OWPFvKlpO2

Score
7/10

Malware Config

Signatures

  • .NET Reactor proctector 1 IoCs

    Detects an executable protected by an unregistered version of Eziriz's .NET Reactor.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • SecuriteInfo.com.Heur.29270.15038.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections