Overview

overview

8

Static

static

8

5f537de4a2...3d.exe

windows7-x64

8

5f537de4a2...3d.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5f537de4a27751192b6d08f4de99ace9efc792982488834ee7d6a089f25e0c3d

  • Size

    752KB

  • Sample

    221129-kmarpafh9t

  • MD5

    1017fd015c31d95b154703573047c079

  • SHA1

    599b76fc21f8e4c13705a646fc5b313bfb2aa9e1

  • SHA256

    5f537de4a27751192b6d08f4de99ace9efc792982488834ee7d6a089f25e0c3d

  • SHA512

    945143071cf4e033ee21fe6498d79d649748311035261fbaf39d0a405a7c35c32a5a909ee1f1f716a46289996df7d77dc2a2749be3769d9b381dc36b2e24aec7

  • SSDEEP

    12288:oyjVEcMkjVbACyA+kq8QIOK317H4BgduUtOFldxcIEosZo9r2SGiemkMO+wS6t:hEAjxAH8QID317H44u8OHf7ELOhGxm8p

Score
8/10
vmprotect

Malware Config

Targets

    • Target

      5f537de4a27751192b6d08f4de99ace9efc792982488834ee7d6a089f25e0c3d

    • Size

      752KB

    • MD5

      1017fd015c31d95b154703573047c079

    • SHA1

      599b76fc21f8e4c13705a646fc5b313bfb2aa9e1

    • SHA256

      5f537de4a27751192b6d08f4de99ace9efc792982488834ee7d6a089f25e0c3d

    • SHA512

      945143071cf4e033ee21fe6498d79d649748311035261fbaf39d0a405a7c35c32a5a909ee1f1f716a46289996df7d77dc2a2749be3769d9b381dc36b2e24aec7

    • SSDEEP

      12288:oyjVEcMkjVbACyA+kq8QIOK317H4BgduUtOFldxcIEosZo9r2SGiemkMO+wS6t:hEAjxAH8QID317H44u8OHf7ELOhGxm8p

    Score
    8/10
    vmprotect

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

      vmprotect
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks