Overview

overview

8

Static

static

8

下发结�...�x.exe

windows7-x64

8

下发结�...�x.exe

windows10-2004-x64

8

Resubmissions

03/10/2022, 14:54

221003-r9zsnabga8 8

13/08/2022, 08:37

220813-kjjkesfgfp 8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    forum_62f45c3f3825e_下发结算报表x.zip

  • Size

    1.9MB

  • Sample

    221003-r9zsnabga8

  • MD5

    3a7a832f6a7d5c8093566c0783edd4f4

  • SHA1

    0d0f1759a1d2f6bc389d70d12e34c56427f85ce5

  • SHA256

    ffaf67e89ab49855c55ed072986c4f6d44a1dc741a160cf8c092a5a488bebd2b

  • SHA512

    206cd06309c5a3a0933d8cd1c516d12bf53c1d66041b8a861d29279ac1d937fa4294c0c17171e0b3be5a2f9aad322107cf7837803de9fbca9b13968efa77cd32

  • SSDEEP

    24576:1XQfAXuCnt+N/pIkmp7wwVeH2lepqVrPrEg8zayyqDkwg6fzkWzbfkUjHB1Me:1g0tWB7mpVKSrjEJayy25gozkWnfp

Score
8/10
vmprotect

Malware Config

Targets

    • Target

      下发结算报表x.exe

    • Size

      3.1MB

    • MD5

      a1d5dec080c558948387f534faa69dc9

    • SHA1

      abe75b88a5305b5eda6ee76d6247d2a26f5b4404

    • SHA256

      bf4ed8d5dc017a7346f7981ce4db8156c1b76b0cd6f9a37394378371fb548870

    • SHA512

      c6d61cc740b0ef8da442401fdfa227a282fb831e049b5d927d085fe45fc0fe1f1df5f39b4d6204f68c2d4a2e7a822ff27278582925aa339ce74e5abec7280a59

    • SSDEEP

      49152:010d8NIEd6k43D1Sef6oTxqDD3WOfGxyQvEc1Oey8UfIL7dLNuSlHjJr6EL7dLNF:rdGgkY0oTwDD3W4GKeYfUr6Lnr6

    Score
    8/10
    vmprotect

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

      vmprotect
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks