2a0bd6197d381f1e0d5fb74425b6d1c60d9f9b107eef5c91b3a8f7b91114d732 | Triage

Submit
Reports

Overview

overview

8

Static

static

8

166fd7b796...09.exe

windows7_x64

8

166fd7b796...09.exe

windows10_x64

8

Sharing

General

Target

166fd7b7965859e1a19623771f8fee09
Size

6.8MB
Sample

211125-t39qdsfgek
MD5

166fd7b7965859e1a19623771f8fee09
SHA1

f9f9846d360e4439b67090cabb6e729eb089bf81
SHA256

2a0bd6197d381f1e0d5fb74425b6d1c60d9f9b107eef5c91b3a8f7b91114d732
SHA512

e1500d76794971e6e900834d6d47a90ce37f0abf2b341401d7e4aefcf567e87579001ea6bfff1076a5f0ce98f1a63e030c5ccdbabe4acc45fbe4ba29ac3a0fe1

Score

8^/10

vmprotect

Static task

static1

Behavioral task

behavioral1

Sample

166fd7b7965859e1a19623771f8fee09.exe

Resource

win7-en-20211014

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

166fd7b7965859e1a19623771f8fee09.exe

Resource

win10-en-20211104

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  166fd7b7965859e1a19623771f8fee09
- Size
  
  6.8MB
- MD5
  
  166fd7b7965859e1a19623771f8fee09
- SHA1
  
  f9f9846d360e4439b67090cabb6e729eb089bf81
- SHA256
  
  2a0bd6197d381f1e0d5fb74425b6d1c60d9f9b107eef5c91b3a8f7b91114d732
- SHA512
  
  e1500d76794971e6e900834d6d47a90ce37f0abf2b341401d7e4aefcf567e87579001ea6bfff1076a5f0ce98f1a63e030c5ccdbabe4acc45fbe4ba29ac3a0fe1
Score

8^/10

vmprotect
- Downloads MZ/PE file
- Executes dropped EXE
- VMProtect packed file
  Detects executables packed with VMProtect commercial packer.
  vmprotect
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy