General

  • Target

    kelscrit.exe

  • Size

    563KB

  • MD5

    64ea70b77e9654021dfe4c5b42a788db

  • SHA1

    ff668253991db29fa83a93a962654a2a13cc87ba

  • SHA256

    919036bc72056762803c599929ee33811f1c9a13f55c571008b57b20b638c54b

  • SHA512

    7ebdbe6ff9e14ec408f52611962af70f24136ee6976a4239f636971d778d9d3491188ccb18c5908f0c69bace9c115dc909a199bec9c74b44ada381c4f8a4429b

  • SSDEEP

    12288:7fYfUlNHYh6qFkbpBOO64kfPZxIgL3lweEbH+aB:7fYMPYc/FHkfhxIgZQH9B

Score
3/10

Malware Config

Signatures

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • kelscrit.exe
    .exe windows:4 windows x86 arch:x86

    f4639a0b3116c2cfc71144b88a929cfd


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    509a34b3a68a773e0afb4259e68f9f82


    Headers

    Imports

    Exports

    Sections

  • Assureringer69.udv
  • Domspraksisene.fur
  • Nesokia.Hyp
  • serow.kar