dddab6bdfa82bbec35c99fe5239917c5dff9b8ca6030fdf027c8531fd6f73736 | Triage

Sharing

General

Target

dddab6bdfa82bbec35c99fe5239917c5dff9b8ca6030fdf027c8531fd6f73736
Size

2.3MB
Sample

221123-s52bcsdb46
MD5

fbde3ace02442db1294b2fb95f7355f2
SHA1

7f24abd833f9be18521df26c2cfa7eecd227d61c
SHA256

dddab6bdfa82bbec35c99fe5239917c5dff9b8ca6030fdf027c8531fd6f73736
SHA512

1afccbb1d35da16cdb5be8177bff5efa330ff1f89fde0f99fa6a864f139cd93852c8ff529de05fdaf8c706b448a11191b8daefd4167b842cba57b317a763e211
SSDEEP

49152:HjOPhXZrFfUnDtwYuOSetD8hRKcDPH2SrZfEcyUjznNQwAxv:HmLrShwzS1qWS9scywdAd

Score

8^/10

vmprotect

Malware Config

Targets

- Target
  
  CF哟哟十倍加速.自动开枪1014sp1/CF哟哟十倍加速.自动开枪1014sp1.exe
- Size
  
  2.4MB
- MD5
  
  b242e4b930901e8e0db343ecf54ab247
- SHA1
  
  3485907c13ca9327578f0699de3f4447c650606e
- SHA256
  
  5931586e55dea4f8f85a1767d90a8ed56afec3d04413573c85f32c2d10c14583
- SHA512
  
  5db51fde7cfc314ca081c5a9286c970481344460728061c637819f70f6ad19c277e4bff33704810d362c588fcb653d97aa674d1d4d1998a836fbb43b5c1d1478
- SSDEEP
  
  49152:xXv8RfxPn+Cy5nmyy90FJmVxpTZl6MfMf4AUf9UTKsNitrbzrdi:qRfxNy5myNYTTZU74Z6vNit/zrd
Score

8^/10

vmprotect
- VMProtect packed file
  Detects executables packed with VMProtect commercial packer.
  vmprotect
behavioral1 behavioral2
- Target
  
  艾艾软件园.url
- Size
  
  205B
- MD5
  
  75cdf710a1e5a1622a18202480f58cdb
- SHA1
  
  6c6ba6622aa65f9c9f04e8779efcb627465eb6d2
- SHA256
  
  8cab5f470f701142fd3d2df08ae4f25b6e790c7ad3271cdda4b4d3ecfcae058b
- SHA512
  
  4f0d9ad7b6aa30e736008bb71486a65b8b497c363735573fad6886115e7754f28e0a002449c113f5d32d5fae723b150c50433ae84082bda633f3459f07e4457d
Score

1^/10
behavioral3 behavioral4

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4