Overview

overview

8

Static

static

8

3baf3d0498...40.exe

windows7-x64

8

3baf3d0498...40.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    3baf3d0498490a3b273adcaaea79ee620147be7f1314c3e88e6119a9ef1eb840

  • Size

    339KB

  • Sample

    221030-rcrqsaedgp

  • MD5

    a3007784831351e815edc4736b582730

  • SHA1

    98ceb462f1de9478f2ce3a1af818fc18b9871c14

  • SHA256

    3baf3d0498490a3b273adcaaea79ee620147be7f1314c3e88e6119a9ef1eb840

  • SHA512

    a804b3cc0fdd3de9eb722f8bb586f81b01c54089d2b1d0f6207d4c146632a933eeb68296464216084aed70b1e7cb505b2b7f00bbe67520d46ff63af1d1927be5

  • SSDEEP

    6144:m7HphnZUdts7ZxNrkDeej1xusrOkzd8HrjQfbi8HHHxYhAe3dCN:qHPnZUdi7nN4Se1Td80fbhHneAe3dw

Score
8/10
discoveryvmprotect

Malware Config

Targets

    • Target

      3baf3d0498490a3b273adcaaea79ee620147be7f1314c3e88e6119a9ef1eb840

    • Size

      339KB

    • MD5

      a3007784831351e815edc4736b582730

    • SHA1

      98ceb462f1de9478f2ce3a1af818fc18b9871c14

    • SHA256

      3baf3d0498490a3b273adcaaea79ee620147be7f1314c3e88e6119a9ef1eb840

    • SHA512

      a804b3cc0fdd3de9eb722f8bb586f81b01c54089d2b1d0f6207d4c146632a933eeb68296464216084aed70b1e7cb505b2b7f00bbe67520d46ff63af1d1927be5

    • SSDEEP

      6144:m7HphnZUdts7ZxNrkDeej1xusrOkzd8HrjQfbi8HHHxYhAe3dCN:qHPnZUdi7nN4Se1Td80fbhHneAe3dw

    Score
    8/10
    discoveryvmprotect

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

      vmprotect

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks