55d71605159242450db636f702aa0d7b3f8853058eb9d387eee2cf8231145355 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

8

dridex

windows10-1703-x64

8

Sharing

General

Target

55d71605159242450db636f702aa0d7b3f8853058eb9d387eee2cf8231145355
Size

3.8MB
Sample

220906-phvnhshhen
MD5

c6fb5f2c779bc9f4b8aa04766e0dfa3f
SHA1

ca70c20ebbfd0eb4376a20e1ed573657295d975a
SHA256

55d71605159242450db636f702aa0d7b3f8853058eb9d387eee2cf8231145355
SHA512

dc171fb1f3dda21019eb6444e169b2e68c07eefe6d1aa4343656ab25235a1e8480f574b9530c65f534949816bae6154658f2b744b1ae076e120a5867b4bd9e3d
SSDEEP

98304:M/5mJJ7EQ2QutM2EugydjwWGNl1mBB5F3Pnjx:M/5sZdk9jDjw1wH3P9

Score

8^/10

vmprotect

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

55d71605159242450db636f702aa0d7b3f8853058eb9d387eee2cf8231145355.exe

Resource

win10-20220901-en

windows10-1703-x64

3 signatures

150 seconds

Malware Config

Targets

- Target
  
  55d71605159242450db636f702aa0d7b3f8853058eb9d387eee2cf8231145355
- Size
  
  3.8MB
- MD5
  
  c6fb5f2c779bc9f4b8aa04766e0dfa3f
- SHA1
  
  ca70c20ebbfd0eb4376a20e1ed573657295d975a
- SHA256
  
  55d71605159242450db636f702aa0d7b3f8853058eb9d387eee2cf8231145355
- SHA512
  
  dc171fb1f3dda21019eb6444e169b2e68c07eefe6d1aa4343656ab25235a1e8480f574b9530c65f534949816bae6154658f2b744b1ae076e120a5867b4bd9e3d
- SSDEEP
  
  98304:M/5mJJ7EQ2QutM2EugydjwWGNl1mBB5F3Pnjx:M/5sZdk9jDjw1wH3P9
Score

8^/10

vmprotect
- VMProtect packed file
  Detects executables packed with VMProtect commercial packer.
  vmprotect
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy