Overview

overview

8

Static

static

8

7a6f288f18...74.exe

windows7-x64

8

7a6f288f18...74.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    7a6f288f18b0eeb1872d86e1bda5966061f7b94dad1025dfa7ed264b4178e674

  • Size

    4.7MB

  • Sample

    221124-gy4mcsgg2z

  • MD5

    e6bab40afa17ee4ca68100bf093b77d7

  • SHA1

    c2399d6d9bb661f470500c7bc1c922f270a1744d

  • SHA256

    7a6f288f18b0eeb1872d86e1bda5966061f7b94dad1025dfa7ed264b4178e674

  • SHA512

    4b6750b499f63fcb0cb40d97710dc9b0cf6861ad1ffc1750d7c815513d116dd1486a38e595af7cccb88d47f342ba099c7aa30b28582b2a947a1c9b64419d1a74

  • SSDEEP

    98304:Z2ZeGl6O8wzfF7Nr9Qs2yx+nSOQtFrPGLec+3iS28nJcmmH5pL2NdaQv:Yf6sBB3UQDGLH+SP8nlCj2j7

Score
8/10
upxvmprotect

Malware Config

Targets

    • Target

      7a6f288f18b0eeb1872d86e1bda5966061f7b94dad1025dfa7ed264b4178e674

    • Size

      4.7MB

    • MD5

      e6bab40afa17ee4ca68100bf093b77d7

    • SHA1

      c2399d6d9bb661f470500c7bc1c922f270a1744d

    • SHA256

      7a6f288f18b0eeb1872d86e1bda5966061f7b94dad1025dfa7ed264b4178e674

    • SHA512

      4b6750b499f63fcb0cb40d97710dc9b0cf6861ad1ffc1750d7c815513d116dd1486a38e595af7cccb88d47f342ba099c7aa30b28582b2a947a1c9b64419d1a74

    • SSDEEP

      98304:Z2ZeGl6O8wzfF7Nr9Qs2yx+nSOQtFrPGLec+3iS28nJcmmH5pL2NdaQv:Yf6sBB3UQDGLH+SP8nlCj2j7

    Score
    8/10
    upxvmprotect

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

      vmprotect

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

2
T1112

Install Root Certificate

1
T1130

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks