Overview

overview

8

Static

static

8

c0d03163cd...f7.exe

windows7-x64

8

c0d03163cd...f7.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c0d03163cd1e1828fb2cff353ffe3bdf2cd84971e0780a49696251ff6552aaf7

  • Size

    2.8MB

  • Sample

    221126-tzcw9age74

  • MD5

    085058177ea04280a513b60347e236f0

  • SHA1

    9b7c7507b2bf76c4ff0721eb8485dc2fb7b7ab7e

  • SHA256

    c0d03163cd1e1828fb2cff353ffe3bdf2cd84971e0780a49696251ff6552aaf7

  • SHA512

    662faaed0805566f9875b1f58c8b752f7a61d6ef6e5d68c62ebc83139b45f1b74c6af66ea3b4ad74bd26c6b797bd2b33515818b08abfe4d8346f34e0f22e0544

  • SSDEEP

    49152:KkQTA+sYMxNH5s5la6kETd4skrcqgRentDu0H+rTxEbpRdlH/C8z:Ka+nw/olVkEp4s0gRiu0erTgpRrC8

Score
8/10
vmprotect

Malware Config

Targets

    • Target

      c0d03163cd1e1828fb2cff353ffe3bdf2cd84971e0780a49696251ff6552aaf7

    • Size

      2.8MB

    • MD5

      085058177ea04280a513b60347e236f0

    • SHA1

      9b7c7507b2bf76c4ff0721eb8485dc2fb7b7ab7e

    • SHA256

      c0d03163cd1e1828fb2cff353ffe3bdf2cd84971e0780a49696251ff6552aaf7

    • SHA512

      662faaed0805566f9875b1f58c8b752f7a61d6ef6e5d68c62ebc83139b45f1b74c6af66ea3b4ad74bd26c6b797bd2b33515818b08abfe4d8346f34e0f22e0544

    • SSDEEP

      49152:KkQTA+sYMxNH5s5la6kETd4skrcqgRentDu0H+rTxEbpRdlH/C8z:Ka+nw/olVkEp4s0gRiu0erTgpRrC8

    Score
    8/10
    vmprotect

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

      vmprotect
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks