c575776b81298467efd9a9f160cf8e7488b02be5a4f1431a8d72beb8dcc8eb51 | Triage

Submit
Reports

Overview

overview

8

Static

static

8

c575776b81...51.dll

windows7-x64

8

c575776b81...51.dll

windows10-2004-x64

8

Sharing

General

Target

c575776b81298467efd9a9f160cf8e7488b02be5a4f1431a8d72beb8dcc8eb51
Size

2.1MB
Sample

221123-ze8q3sfg7y
MD5

73882d3f4448ff1605f06d20b1b14024
SHA1

4d3183b5d91cd22a66476e6ec4c0472c367b8254
SHA256

c575776b81298467efd9a9f160cf8e7488b02be5a4f1431a8d72beb8dcc8eb51
SHA512

9665adedb71a9e867ffa9c6709e1a25169152d63aa5c624fbced7bb16930812ccef8dfde5eb02e9a65f2daad281c2f040ecb8577facf8434c463b16d38e461f6
SSDEEP

24576:zvYW1jtpvrHPdDcVAu28I2IbYJzJQ0mSaiIxbTSaIZ9Cg7p9kBZv1qw1UykPJBo:cDV7uSai9pRkBZvg8UyGo

Score

8^/10

vmprotect

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

c575776b81298467efd9a9f160cf8e7488b02be5a4f1431a8d72beb8dcc8eb51.dll

Resource

win7-20221111-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

c575776b81298467efd9a9f160cf8e7488b02be5a4f1431a8d72beb8dcc8eb51.dll

Resource

win10v2004-20220901-en

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Targets

- Target
  
  c575776b81298467efd9a9f160cf8e7488b02be5a4f1431a8d72beb8dcc8eb51
- Size
  
  2.1MB
- MD5
  
  73882d3f4448ff1605f06d20b1b14024
- SHA1
  
  4d3183b5d91cd22a66476e6ec4c0472c367b8254
- SHA256
  
  c575776b81298467efd9a9f160cf8e7488b02be5a4f1431a8d72beb8dcc8eb51
- SHA512
  
  9665adedb71a9e867ffa9c6709e1a25169152d63aa5c624fbced7bb16930812ccef8dfde5eb02e9a65f2daad281c2f040ecb8577facf8434c463b16d38e461f6
- SSDEEP
  
  24576:zvYW1jtpvrHPdDcVAu28I2IbYJzJQ0mSaiIxbTSaIZ9Cg7p9kBZv1qw1UykPJBo:cDV7uSai9pRkBZvg8UyGo
Score

8^/10

vmprotect
- VMProtect packed file
  Detects executables packed with VMProtect commercial packer.
  vmprotect
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy