General

  • Target

    Xerin v3.0.0.59.rar

  • Size

    4.2MB

  • Sample

    250207-ceszasvkas

  • MD5

    145268ad95dbe92f3017af7413593bda

  • SHA1

    78998b2be67b16c791d558c60b35b92eaddf9e85

  • SHA256

    a01ee8bf523f8be8dfc47795a331cd3e72e76b78e43eaea0bd4689ff473e87c2

  • SHA512

    4cdd3599141aa587ea91125257254299a9f023bda5003c98e79156cdfb178c683cb97bc1387e568495cbb8eafb704e40cbf53f6d02fd9994a8982f61c63f10fc

  • SSDEEP

    98304:LNOiWH1ZhrkzlT9QMGACFpWZ/1B3KKsY6x+Ce/E1cbJ:LADHhr4XRJCHC9B3KKsNQ9

Score
7/10

Malware Config

Targets

    • Target

      Xerin v3.0.0.59.rar

    • Size

      4.2MB

    • MD5

      145268ad95dbe92f3017af7413593bda

    • SHA1

      78998b2be67b16c791d558c60b35b92eaddf9e85

    • SHA256

      a01ee8bf523f8be8dfc47795a331cd3e72e76b78e43eaea0bd4689ff473e87c2

    • SHA512

      4cdd3599141aa587ea91125257254299a9f023bda5003c98e79156cdfb178c683cb97bc1387e568495cbb8eafb704e40cbf53f6d02fd9994a8982f61c63f10fc

    • SSDEEP

      98304:LNOiWH1ZhrkzlT9QMGACFpWZ/1B3KKsY6x+Ce/E1cbJ:LADHhr4XRJCHC9B3KKsNQ9

    Score
    7/10
    • .NET Reactor proctector

      Detects an executable protected by an unregistered version of Eziriz's .NET Reactor.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks