Overview

overview

8

Static

static

8

ddc2bdeba0...26.exe

windows7-x64

8

ddc2bdeba0...26.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    28s
  • max time network
    31s
  • platform
    windows7_x64
  • resource
    win7-20221111-en
  • resource tags

    arch:x64arch:x86image:win7-20221111-enlocale:en-usos:windows7-x64system
  • submitted
    27-11-2022 04:44

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ddc2bdeba010849db93a76d042db74d311c2863e3887b0522c31af5246f01826.exe

  • Size

    1.4MB

  • MD5

    deff14023eb246e1cb0ca4c49e7925e2

  • SHA1

    fdfc8aa85224fa5f35ce12a473a319ee05ef8056

  • SHA256

    ddc2bdeba010849db93a76d042db74d311c2863e3887b0522c31af5246f01826

  • SHA512

    2f65fd79491a209d5ee8bca91460913b165d71ecd38934aa309310366d4c067e2afe69c2e3de7273fcd0291ed4cd115a762ff9f09c4e792931ee537502419c02

  • SSDEEP

    24576:oUjatLwHgHmB2dDsh0PNLgesaMDzSlKYdxDNXGR/IZcKk7X7Or8jQaH:oGbIdDtNLgesr3mKCxxXQIZkZ

Score
8/10
vmprotect

Malware Config

Signatures

  • VMProtect packed file 1 IoCs

    Detects executables packed with VMProtect commercial packer.

    vmprotect

Processes

  • C:\Users\Admin\AppData\Local\Temp\ddc2bdeba010849db93a76d042db74d311c2863e3887b0522c31af5246f01826.exe
    "C:\Users\Admin\AppData\Local\Temp\ddc2bdeba010849db93a76d042db74d311c2863e3887b0522c31af5246f01826.exe"
    1⤵
      PID:1624

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/1624-54-0x0000000000400000-0x00000000006C5000-memory.dmp
      Filesize

      2.8MB

      Download