3393068eec5540b5a987e0c31c601b6d77ec326fcda7d6ddaf62d0d4f9f6db65 | Triage

Submit
Reports

Overview

overview

8

Static

static

8

svhost.exe

windows7-x64

8

svhost.exe

windows10-2004-x64

8

Resubmissions

12-02-2024 14:35

240212-rx229agb6t 7

30-09-2023 12:02

230930-n7wrfach62 7

04-08-2022 02:50

220804-dbkn7aaba4 8

Sharing

General

Target

svhost.exe
Size

5.9MB
Sample

220804-dbkn7aaba4
MD5

82f3539d8578b18fbc931f4f33fcbba3
SHA1

196f127502d898e7d14cf9521b2b5838a2c1aa14
SHA256

3393068eec5540b5a987e0c31c601b6d77ec326fcda7d6ddaf62d0d4f9f6db65
SHA512

1a3a35b7c4090028e99843c442e15bf12a7b38f0840fce144a1686510e95d1f48a102056ee7e7abc263198338432000cdf4a870c8ae7d2284ae65990eaa86c78

Score

8^/10

vmprotect

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

svhost.exe

Resource

win7-20220718-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

svhost.exe

Resource

win10v2004-20220721-en

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  svhost.exe
- Size
  
  5.9MB
- MD5
  
  82f3539d8578b18fbc931f4f33fcbba3
- SHA1
  
  196f127502d898e7d14cf9521b2b5838a2c1aa14
- SHA256
  
  3393068eec5540b5a987e0c31c601b6d77ec326fcda7d6ddaf62d0d4f9f6db65
- SHA512
  
  1a3a35b7c4090028e99843c442e15bf12a7b38f0840fce144a1686510e95d1f48a102056ee7e7abc263198338432000cdf4a870c8ae7d2284ae65990eaa86c78
Score

8^/10

vmprotect
- VMProtect packed file
  Detects executables packed with VMProtect commercial packer.
  vmprotect
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy