Overview

overview

8

Static

static

8

ecb7b13a03...6d.exe

windows7-x64

8

ecb7b13a03...6d.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ecb7b13a038b307df01860c47f2e17160158ef96a5cc6440236db1dc82c5fe6d

  • Size

    584KB

  • Sample

    221126-gc27eaab7w

  • MD5

    44e2c561f8d80441cbe3fc69010d197e

  • SHA1

    3d7261e7689700b8645e1d582237ea107bf7c88f

  • SHA256

    ecb7b13a038b307df01860c47f2e17160158ef96a5cc6440236db1dc82c5fe6d

  • SHA512

    8ce03161c60378cec743968d25a3c5b6b67b875ebf790c907c8a4caa0449c774dbcc5015ca0d93495cc35306775868a1869d55d7de8cb15775e4bb846a4678d9

  • SSDEEP

    12288:EskxoMS9YthPNrjI8cwQs0yDrHKen3CGz2kHxcE6CuQgp:DkiMLrAPyDrJ7t1gp

Score
8/10
vmprotect

Malware Config

Targets

    • Target

      ecb7b13a038b307df01860c47f2e17160158ef96a5cc6440236db1dc82c5fe6d

    • Size

      584KB

    • MD5

      44e2c561f8d80441cbe3fc69010d197e

    • SHA1

      3d7261e7689700b8645e1d582237ea107bf7c88f

    • SHA256

      ecb7b13a038b307df01860c47f2e17160158ef96a5cc6440236db1dc82c5fe6d

    • SHA512

      8ce03161c60378cec743968d25a3c5b6b67b875ebf790c907c8a4caa0449c774dbcc5015ca0d93495cc35306775868a1869d55d7de8cb15775e4bb846a4678d9

    • SSDEEP

      12288:EskxoMS9YthPNrjI8cwQs0yDrHKen3CGz2kHxcE6CuQgp:DkiMLrAPyDrJ7t1gp

    Score
    8/10
    vmprotect

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

      vmprotect
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks