Overview

overview

8

Static

static

8

fc9de4647a...ef.exe

windows7-x64

8

fc9de4647a...ef.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    fc9de4647add80cb626388dbd88254b03f0cc86f483116f792e31696d2656eef

  • Size

    1.5MB

  • Sample

    221026-xzx4zaggcj

  • MD5

    88718f2fc1c592791ce919efecfe1984

  • SHA1

    c6ab70cbc12e779d336ce64ce9cbe45a4d7f25bd

  • SHA256

    fc9de4647add80cb626388dbd88254b03f0cc86f483116f792e31696d2656eef

  • SHA512

    3ed50048e34e33af2f89384d1219d31136872e64913f5f90b1c1c202ec56c34f415d99a8c91762897a182c876e403b7718cc9e9620a1e7517435a73ff70bdf91

  • SSDEEP

    24576:DPkhxVOqh+PQ+2Qsx0s/50IdJH1VHk+7xIV72Vo9b8hckMdA8G4LGTWfzBLSJXfn:DchFcoxx0IdJQgaRAZiIsLuXyk69s

Score
8/10
vmprotect

Malware Config

Targets

    • Target

      fc9de4647add80cb626388dbd88254b03f0cc86f483116f792e31696d2656eef

    • Size

      1.5MB

    • MD5

      88718f2fc1c592791ce919efecfe1984

    • SHA1

      c6ab70cbc12e779d336ce64ce9cbe45a4d7f25bd

    • SHA256

      fc9de4647add80cb626388dbd88254b03f0cc86f483116f792e31696d2656eef

    • SHA512

      3ed50048e34e33af2f89384d1219d31136872e64913f5f90b1c1c202ec56c34f415d99a8c91762897a182c876e403b7718cc9e9620a1e7517435a73ff70bdf91

    • SSDEEP

      24576:DPkhxVOqh+PQ+2Qsx0s/50IdJH1VHk+7xIV72Vo9b8hckMdA8G4LGTWfzBLSJXfn:DchFcoxx0IdJQgaRAZiIsLuXyk69s

    Score
    8/10
    vmprotect

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

      vmprotect

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks