Overview

overview

8

Static

static

8

9324a48aba...3c.exe

windows7-x64

8

9324a48aba...3c.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    151s
  • max time network
    130s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20220812-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
  • submitted
    02/12/2022, 17:58

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    9324a48aba9c054fe490d9f8397517de3bd0523972d57158cf3b7ac3df36923c.exe

  • Size

    260KB

  • MD5

    e66eb6cb35959b34146bbc675010c03d

  • SHA1

    cdcfa8e39af6e01c7e73d027fc353ae3f62c4808

  • SHA256

    9324a48aba9c054fe490d9f8397517de3bd0523972d57158cf3b7ac3df36923c

  • SHA512

    854138769a5a5c11204d9d28136019261a9e36430e1ccad501acd0bdc2131c8f726d3b432a74606912dd33d0e4d625b2f604134894043f835c03d902418f2b06

  • SSDEEP

    6144:FV7b6hO3uTDlUgr4sRSFszh68q6ZSkRZxptE5H0lk:FV7bh3uVUgcxFs15ZSkRrpa/

Score
8/10
vmprotect

Malware Config

Signatures

  • VMProtect packed file 3 IoCs

    Detects executables packed with VMProtect commercial packer.

    vmprotect

Processes

  • C:\Users\Admin\AppData\Local\Temp\9324a48aba9c054fe490d9f8397517de3bd0523972d57158cf3b7ac3df36923c.exe
    "C:\Users\Admin\AppData\Local\Temp\9324a48aba9c054fe490d9f8397517de3bd0523972d57158cf3b7ac3df36923c.exe"
    1⤵
      PID:956

    Network

          MITRE ATT&CK Matrix

          Replay Monitor

          Loading Replay Monitor...

          Downloads

          • memory/956-132-0x0000000000400000-0x000000000053B000-memory.dmp

            Filesize

            1.2MB

            Download

          • memory/956-133-0x0000000000400000-0x000000000053B000-memory.dmp

            Filesize

            1.2MB

            Download

          • memory/956-135-0x0000000000400000-0x000000000053B000-memory.dmp

            Filesize

            1.2MB

            Download