Overview

overview

8

Static

static

8

81c2eee502...8b.dll

windows7-x64

5

81c2eee502...8b.dll

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    81c2eee5021f9bd2eacd565ce2fd2036f73896c30c9f05d2c0158e8cc6fcd68b

  • Size

    105KB

  • Sample

    221124-jdfqxaha72

  • MD5

    009786c930c56921c500d1d6ca1c47ef

  • SHA1

    b3fedb32e8c6d44337bc2326409fe8db590a70b5

  • SHA256

    81c2eee5021f9bd2eacd565ce2fd2036f73896c30c9f05d2c0158e8cc6fcd68b

  • SHA512

    912fed66a7c21ec067a300204876fbb871efa17082fdf96e1de17852efab5458cacbe8e8da3eed6938ba9b162ec1f1c886a130df251cdd13f2c0f7d8a49b4b4a

  • SSDEEP

    3072:GmwAu62lep2pdokh2uex6EcKXGTVz7Zm3rF:dbuTJdNo8EcKXGTVz7ZA

Score
8/10
vmprotect

Malware Config

Targets

    • Target

      81c2eee5021f9bd2eacd565ce2fd2036f73896c30c9f05d2c0158e8cc6fcd68b

    • Size

      105KB

    • MD5

      009786c930c56921c500d1d6ca1c47ef

    • SHA1

      b3fedb32e8c6d44337bc2326409fe8db590a70b5

    • SHA256

      81c2eee5021f9bd2eacd565ce2fd2036f73896c30c9f05d2c0158e8cc6fcd68b

    • SHA512

      912fed66a7c21ec067a300204876fbb871efa17082fdf96e1de17852efab5458cacbe8e8da3eed6938ba9b162ec1f1c886a130df251cdd13f2c0f7d8a49b4b4a

    • SSDEEP

      3072:GmwAu62lep2pdokh2uex6EcKXGTVz7Zm3rF:dbuTJdNo8EcKXGTVz7ZA

    Score
    8/10
    vmprotect

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

      vmprotect

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks