General
-
Target
7727b8188b78a605f766578aab1cb995.exe
-
Size
19.0MB
-
MD5
7727b8188b78a605f766578aab1cb995
-
SHA1
4c7c56fdfdd300b421c121394ce5a1cb556f9592
-
SHA256
bd4e54b8671c85242bf92ee9b90e237db0fecfa97a4298cfeeaaf4d1b40e6c11
-
SHA512
4eef5259f1e33329a2b804165204d1b6c7cbba3851ae542ddcfe79fe005ad31440a983b32d3fb36ed04b1c89bae7a4e42d523002059d5d228d5a62e7593717a1
-
SSDEEP
393216:9v0t4S8QtZbO8Z9Q9dIcBkvbxrM4mQqHtSMo+9/pWFGRw0qr2W673KH9+8J:9c2S3ZbO8Z9AeeQqHt1o+9/pWQx36d+q
Score
10/10
Malware Config
Signatures
-
Contains code to disable Windows Defender 1 IoCs
A .NET executable tasked with disabling Windows Defender capabilities such as realtime monitoring, blocking at first seen, etc.
-
Detects Pyinstaller 1 IoCs
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
7727b8188b78a605f766578aab1cb995.exe
Headers
Sections
-
Stub.pyc