General

  • Target

    e444c39f53befc35771046f91bbdfcb975cf52a7fc25b2569d0526273e3db1bb

  • Size

    1.1MB

  • Sample

    221127-p8hfwahg45

  • MD5

    41f6253663cf3d80060dda59a189c99a

  • SHA1

    5bac2597215cd8428be01207e07920c45fb24223

  • SHA256

    e444c39f53befc35771046f91bbdfcb975cf52a7fc25b2569d0526273e3db1bb

  • SHA512

    7e7831c95563c4e0d7a3f8272904ef9f3c6ba6d2f7233c1d18126130f8cc99979394e8df17df05e39e08ee038172096ea6453d92d393463fe7dc001e96828ea6

  • SSDEEP

    24576:D6f/nNY62/HEB3xS7wl8Xtew8C8dmqAwHirbmU8kRViB6O8:DqVN2MB3w7xdqaqAEirNdiBf8

Score
8/10

Malware Config

Targets

    • Target

      SSQANNs.exe

    • Size

      1.2MB

    • MD5

      ad9bd83cafcdb61e6cf228ac45e533f7

    • SHA1

      6c21a1e80cc9b0cd17bb85d564e043e7df1e48d6

    • SHA256

      0aaed88168866035929b798dd1b60e3e80caa3676a4b79d74eab94046db3ba3c

    • SHA512

      54bfbdc1cce6925933f5618eecda78d40306ff8eeec87f67015b4b8e33fdd45af97bc9724d38b92cc43900213c1c5841a4cb93491406df9dffe9d2c8c54c9548

    • SSDEEP

      24576:SiokM/5nFRxz5BPEP7EikWBiTJ+aLolmlrvwPWBFh0enPV8a3QefhI557B66:Sj/FjzQP11iFvLolmlTdyathIT746

    Score
    8/10
    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Matrix

Tasks