Overview

overview

8

Static

static

8

taskhost.exe

windows7_x64

8

taskhost.exe

windows10-2004_x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3fed910153badbbe82bdc2fd85dbd1ba930eb46bbd5feb08ea4618d0608aeeac

  • Size

    647KB

  • Sample

    220630-wm7l7sfbcl

  • MD5

    eccbc2e5a1eee4183c4bf2c1c98f90ff

  • SHA1

    184b1e27778fec5c50bd6e54d99c0a869e8d03ed

  • SHA256

    3fed910153badbbe82bdc2fd85dbd1ba930eb46bbd5feb08ea4618d0608aeeac

  • SHA512

    a38e15cb7c0334e4e56ff135d787d489d4ac9704d92c20ae0ea160a73f461ebdb4536d53e111564c05daadbd800fdec2135b6f9f5011dc692eb5fa0527b0e22b

Score
8/10
vmprotect

Malware Config

Targets

    • Target

      taskhost.exe

    • Size

      693KB

    • MD5

      d6e447ddcc6f74cac89322ff25e7835e

    • SHA1

      9a419d1a7d4a515d03db7f08fdd27e11ae896b11

    • SHA256

      97be2d515e01ba66091148456b392f7539b43ab1ba412c493107e93aeda1536a

    • SHA512

      f913cac403ff7859dde8f8604617524ddc7227a4477f457b2b9716be7e6ec8b9b2dae2cff75dce4c32f054b561cff224f272af6e4d59df82c1c3cf28ffac645c

    Score
    8/10
    vmprotect

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

      vmprotect

    • AutoIT Executable

      AutoIT scripts compiled to PE executables.

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks