Overview

overview

8

Static

static

8

ffda2ed9d0...5a.exe

windows7-x64

8

ffda2ed9d0...5a.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ffda2ed9d01ff35435f811c9aab6d543ddf910033e688035b733fe09bcff045a

  • Size

    2.1MB

  • Sample

    221201-m2eqasef9s

  • MD5

    01b3c9156b033197699e1e6a3c698b82

  • SHA1

    feb9174924ff885d579d52667d26367b5acab192

  • SHA256

    ffda2ed9d01ff35435f811c9aab6d543ddf910033e688035b733fe09bcff045a

  • SHA512

    5af1c7116fa84f380791def41b69bd805c558ebd672d6fd365eee898aba833b627e2568260e520ab0417a51140e99007b551541ffa2dde47bf03c08c80e3617b

  • SSDEEP

    24576:rnb5BVwFMrYyn8kP4wcQIsikcFGnslauITs0/9EgwOY/VOsmbw7cIjHe4BpeQy:rXYygwcaB/gDOsmbwAIjHe+4

Score
8/10
vmprotect

Malware Config

Targets

    • Target

      ffda2ed9d01ff35435f811c9aab6d543ddf910033e688035b733fe09bcff045a

    • Size

      2.1MB

    • MD5

      01b3c9156b033197699e1e6a3c698b82

    • SHA1

      feb9174924ff885d579d52667d26367b5acab192

    • SHA256

      ffda2ed9d01ff35435f811c9aab6d543ddf910033e688035b733fe09bcff045a

    • SHA512

      5af1c7116fa84f380791def41b69bd805c558ebd672d6fd365eee898aba833b627e2568260e520ab0417a51140e99007b551541ffa2dde47bf03c08c80e3617b

    • SSDEEP

      24576:rnb5BVwFMrYyn8kP4wcQIsikcFGnslauITs0/9EgwOY/VOsmbw7cIjHe4BpeQy:rXYygwcaB/gDOsmbwAIjHe+4

    Score
    8/10
    vmprotect

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

      vmprotect

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks