General

  • Target

    rklancienne.exe

  • Size

    44.1MB

  • MD5

    3831c3d695a8fb0ace15e0ca7d7a85f4

  • SHA1

    28031aa270b3210195d0741c252f227f43d9467c

  • SHA256

    345f1842ab72b5259afa85b47a75d363c1f8696a0610b958461be229d0a25595

  • SHA512

    f18fc566f6a46dde3dd1ee81150aaa948fb25ec0cefee8f121f38309788ae4ba58c97199600155bd824323d6e9698d399e0358f3c010190a7c39cc070fb796f3

  • SSDEEP

    786432:NpxQgzz23+2H7DebsFwyabHUF4LIkO/ekOgIowqsh8W+wPXVWzIY/ScJctcq:Nph+3+qPeQFwXay/LqkzPlW04ScJctcq

Score
7/10

Malware Config

Signatures

  • Themida packer 1 IoCs

    Detects Themida, an advanced Windows software protection system.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • rklancienne.exe
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections