Overview

overview

8

Static

static

8

3693f05694...ee.exe

windows7-x64

8

3693f05694...ee.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    3693f05694a62a7e2c8a76fe7536b7602a1d012bc8a157004f676cfb82ef6dee

  • Size

    2.1MB

  • Sample

    221201-mzz88aee7s

  • MD5

    d146eba476ba3a307d4ba562adb0e552

  • SHA1

    2b94fe7e63dd4665fe4b2cda1f9e6a94665d8c3c

  • SHA256

    3693f05694a62a7e2c8a76fe7536b7602a1d012bc8a157004f676cfb82ef6dee

  • SHA512

    72a7c8226348c9129485d326827da46affc20d2098dc4e6cd284df85c1d9c3d9e3dbca84da58294c82fb7bb353fd505db952e9aa82eb838f0df2ebd04f2b30cd

  • SSDEEP

    24576:5FOS+JKcXV21NXK2NfOcwtWZMjHe4BpHikcFGnslauITs0/9EgwOY/VOsmbw7cL8:5FdNXfbwtvjHe+FB/gDOsmbwALXM

Score
8/10
vmprotect

Malware Config

Targets

    • Target

      3693f05694a62a7e2c8a76fe7536b7602a1d012bc8a157004f676cfb82ef6dee

    • Size

      2.1MB

    • MD5

      d146eba476ba3a307d4ba562adb0e552

    • SHA1

      2b94fe7e63dd4665fe4b2cda1f9e6a94665d8c3c

    • SHA256

      3693f05694a62a7e2c8a76fe7536b7602a1d012bc8a157004f676cfb82ef6dee

    • SHA512

      72a7c8226348c9129485d326827da46affc20d2098dc4e6cd284df85c1d9c3d9e3dbca84da58294c82fb7bb353fd505db952e9aa82eb838f0df2ebd04f2b30cd

    • SSDEEP

      24576:5FOS+JKcXV21NXK2NfOcwtWZMjHe4BpHikcFGnslauITs0/9EgwOY/VOsmbw7cL8:5FdNXfbwtvjHe+FB/gDOsmbwALXM

    Score
    8/10
    vmprotect

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

      vmprotect

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks