Overview

overview

10

Static

static

10

Arata_Verdacrypt.ps1

windows7-x64

3

Arata_Verdacrypt.ps1

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Arata_Verdacrypt.ps1

  • Size

    34KB

  • MD5

    470f24b0d1fcbfaae2ba8286ab64f0f2

  • SHA1

    cefe5f8886ed2468f7834c5ed0abafbee7083245

  • SHA256

    e04ca52275d940234c4cf1744c64712513319668dbf7a0d77111a03cf9fdba40

  • SHA512

    e108433b636de0454ff3cdb4822be12b84950e5cf32f63ded0b2d2d532f570357156e15aacd7a8b95aabcd7f4280609e1fcde32146883ab866e1d65600768715

  • SSDEEP

    384:thz/snUBSzj5mMEEpi0D04eEMls/11AUfoUHaWPw3+4CFYV5jIyJu7Y:NM5mME00xEbrl6Yq+40+IF7Y

Score
10/10

Malware Config

Signatures

  • Contains code to disable Windows Defender 1 IoCs

    A .NET executable tasked with disabling Windows Defender capabilities such as realtime monitoring, blocking at first seen, etc.

Files

  • Arata_Verdacrypt.ps1
    .ps1