c23d23b86223211042baacb04b35975d160c25a49c2c220fdd17064fbcc17b12

Sharing

Copy URL Twitter E-mail

General

Target

c23d23b86223211042baacb04b35975d160c25a49c2c220fdd17064fbcc17b12
Size

584KB
MD5

e233d36f55a048bf96a668730e158b1c
SHA1

b20c613d196f6a15e49dbe4e53191225d42ef05e
SHA256

c23d23b86223211042baacb04b35975d160c25a49c2c220fdd17064fbcc17b12
SHA512

2a132a0fd183f20a9c6ef48e0a33cb453fb706056da5a65863a7cae4c75ae52a98a3d63fa434e5fcb2076ba69dbe85923c9714d271323d34660a50066dd6577b
SSDEEP

6144:a++4V2SKDVYAgv3BEqQhzNDvW9v5wlgInmCg0j2b2HTPlccgVsy13ub+L8:vmGFxEqUiR5s/m70jOweNyG3U+L

Score

8^/10

vmprotect

Malware Config

Signatures

VMProtect packed file 1 IoCs

Detects executables packed with VMProtect commercial packer.

vmprotect

resource	yara_rule
sample	vmprotect

Files

c23d23b86223211042baacb04b35975d160c25a49c2c220fdd17064fbcc17b12
.dll windows x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Exports

Exports

InstallHook
UninstallHook

Sections

.text
Size: - Virtual size: 77KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

MyGame
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vmp0
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vmp1
Size: - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text1
Size: 232KB - Virtual size: 256KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.adata
Size: 52KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data1
Size: 24KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc1
Size: 16KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.pdata
Size: 228KB - Virtual size: 256KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Exports

Exports

Sections

.text Size: - Virtual size: 77KB

.rdata Size: 16KB - Virtual size: 14KB

.data Size: - Virtual size: 10KB

MyGame Size: - Virtual size: 12KB

.vmp0 Size: - Virtual size: 8KB

.vmp1 Size: - Virtual size: 5KB

.reloc Size: - Virtual size: 7KB

.text1 Size: 232KB - Virtual size: 256KB

.adata Size: 52KB - Virtual size: 64KB

.data1 Size: 24KB - Virtual size: 64KB

.reloc1 Size: 16KB - Virtual size: 64KB

.pdata Size: 228KB - Virtual size: 256KB

.rsrc Size: 12KB - Virtual size: 12KB

.text
Size: - Virtual size: 77KB

.rdata
Size: 16KB - Virtual size: 14KB

.data
Size: - Virtual size: 10KB

MyGame
Size: - Virtual size: 12KB

.vmp0
Size: - Virtual size: 8KB

.vmp1
Size: - Virtual size: 5KB

.reloc
Size: - Virtual size: 7KB

.text1
Size: 232KB - Virtual size: 256KB

.adata
Size: 52KB - Virtual size: 64KB

.data1
Size: 24KB - Virtual size: 64KB

.reloc1
Size: 16KB - Virtual size: 64KB

.pdata
Size: 228KB - Virtual size: 256KB

.rsrc
Size: 12KB - Virtual size: 12KB