Overview

overview

7

Static

static

7

VallyLoader.exe

windows10-2004_x64

7

Analysis

  • max time kernel
    111s
  • max time network
    124s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20220414-en
  • submitted
    10-07-2022 14:01

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    VallyLoader.exe

  • Size

    8.6MB

  • MD5

    cc636e0bf392b6dd369c9c27de534edb

  • SHA1

    36a71ae4cd911368f7283c0b0c6dda87f153d23b

  • SHA256

    f1dfad44e9673741c97503c5d299b7a394a193e714f11da1af63c0e5648afa26

  • SHA512

    d4eb23692002bf68321eb176d90eb8f8fc9a7d16605e06896283bc83ab6570580391683116b4fb41b44b2684a849538c721a335df0c37a8a1c9c0d4018b8b3c0

Score
7/10
themida

Malware Config

Signatures

  • Themida packer 1 IoCs

    Detects Themida, an advanced Windows software protection system.

    themida

Processes

  • C:\Users\Admin\AppData\Local\Temp\VallyLoader.exe
    "C:\Users\Admin\AppData\Local\Temp\VallyLoader.exe"
    1⤵
      PID:2008

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/2008-130-0x00007FF7644D0000-0x00007FF765CE1000-memory.dmp
      Filesize

      24.1MB

      Download