8ac9e1b2a8bab6ef578a8c0a0c96fa2c0646f8f920975ee9b04425e7cd4ee1f5 | Triage

Submit
Reports

Overview

overview

8

Static

static

8

CFɸ糬...��.exe

windows7-x64

8

CFɸ糬...��.exe

windows10-2004-x64

8

新云软件.url

windows7-x64

1

新云软件.url

windows10-2004-x64

1

Sharing

General

Target

8ac9e1b2a8bab6ef578a8c0a0c96fa2c0646f8f920975ee9b04425e7cd4ee1f5
Size

555KB
Sample

221123-t32psafh33
MD5

89b3879c3f4ce8c5e6f52f0ca9ca7aa9
SHA1

886060d685f0e7e9fbd09c2f0dda1e51c39ef817
SHA256

8ac9e1b2a8bab6ef578a8c0a0c96fa2c0646f8f920975ee9b04425e7cd4ee1f5
SHA512

e9c00c967969c2246d36758f8012d0543d457eefe408f558f700b8b153038749592ad41be7686704394d851bca6d7f2d4d9c9ce33b33823cd6a8b450c34f1e6c
SSDEEP

12288:aoqxF/HxJCxL3gR1RaJaSrVXvyfmrvmwtfDIFNjzv6c:fmIL3gFOagXvy+qZzv6c

Score

8^/10

vmprotect

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

CFɸ糬ٸ.exe

Resource

win7-20221111-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

CFɸ糬ٸ.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

7 signatures

150 seconds

Behavioral task

behavioral3

Sample

新云软件.url

Resource

win7-20221111-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral4

Sample

新云软件.url

Resource

win10v2004-20221111-en

windows10-2004-x64

0 signatures

150 seconds

Malware Config

Targets

- Target
  
  CFɸ糬ٸ.exe
- Size
  
  816KB
- MD5
  
  39832b7e716e6fb1e7ed5dfec6f1d56a
- SHA1
  
  e514e3f32f1096fe6e904a6531edd41afa2a7210
- SHA256
  
  d3845120969975b18d799e6568b49e6970b9124f8d6f80318db711850d8f993f
- SHA512
  
  a12142e853734d84a1e366f9d0e860aeadb2a4f401001c758384e01440eec5271a9f6aa39ea35f3914274c98ea95aa3f55275245f6dfbab03fee7692b201c9b5
- SSDEEP
  
  12288:tbQ0KzGSFONFsDG1hAT67tvVKwDIc8GoAEM2roUm:dCbFkFd1hAT+TKwbwM2roUm
Score

8^/10

vmprotect
- VMProtect packed file
  Detects executables packed with VMProtect commercial packer.
  vmprotect
- Drops file in System32 directory
behavioral1 behavioral2
- Target
  
  新云软件.url
- Size
  
  217B
- MD5
  
  e5e80be1cf1a1b2af35991aed091c827
- SHA1
  
  79e02d122cdf24da7e59044b4bf83572242b4c71
- SHA256
  
  1016d243a1266c9970996f2847639ecefbecc361cd98fb79d27d048eee3dd69e
- SHA512
  
  b926f6e34e0e9e260a8f6e59ec8e660af0fea09de91140d968cc7665ea45f840a8951f4a1c0400bfe384d2e269159febfc5e32981b863b9d97830f5eb2521705
Score

1^/10
behavioral3 behavioral4

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

© 2018-2024

Terms | Privacy