Overview

overview

8

Static

static

8

0a1367e9e8...58.exe

windows7-x64

8

0a1367e9e8...58.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0a1367e9e81349bee726eef5801af5ffcd7f10525694fc9fdae6388385a8ae58

  • Size

    3.8MB

  • Sample

    221125-zz1afafc32

  • MD5

    5ce7b7a93421ccc26bd3324805e2e9db

  • SHA1

    e8e302d73c1df162da2928eb1261e0fdceda53c3

  • SHA256

    0a1367e9e81349bee726eef5801af5ffcd7f10525694fc9fdae6388385a8ae58

  • SHA512

    804bc74fe9878364a6fbb56492de5478ef4f08eee3e17605826048c1cb688eac855e0474f4dba858769eca68a871e9d3cdadf6208518687583a36a4f4273f42f

  • SSDEEP

    98304:j+pw0mZ2aunm0EIRgaR90tDhOYCnN9/nK5KGs1k:j+8Z2Bm0BPutDZui

Score
8/10
vmprotect

Malware Config

Targets

    • Target

      0a1367e9e81349bee726eef5801af5ffcd7f10525694fc9fdae6388385a8ae58

    • Size

      3.8MB

    • MD5

      5ce7b7a93421ccc26bd3324805e2e9db

    • SHA1

      e8e302d73c1df162da2928eb1261e0fdceda53c3

    • SHA256

      0a1367e9e81349bee726eef5801af5ffcd7f10525694fc9fdae6388385a8ae58

    • SHA512

      804bc74fe9878364a6fbb56492de5478ef4f08eee3e17605826048c1cb688eac855e0474f4dba858769eca68a871e9d3cdadf6208518687583a36a4f4273f42f

    • SSDEEP

      98304:j+pw0mZ2aunm0EIRgaR90tDhOYCnN9/nK5KGs1k:j+8Z2Bm0BPutDZui

    Score
    8/10
    vmprotect

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

      vmprotect

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks