Overview

overview

8

Static

static

8

bc945ca931...ad.exe

windows7-x64

8

bc945ca931...ad.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    43s
  • max time network
    50s
  • platform
    windows7_x64
  • resource
    win7-20220812-en
  • resource tags

    arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system
  • submitted
    03-12-2022 14:48

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    bc945ca93142be52361a37f7ddea312c6dc8b4312ac60beec1f22fc7cc271dad.exe

  • Size

    60KB

  • MD5

    98d91ae4b452cb3d72ab5fd1e06dc3de

  • SHA1

    2ed646c5d1c811f9ac259fa5acbd415ec2e4e88f

  • SHA256

    bc945ca93142be52361a37f7ddea312c6dc8b4312ac60beec1f22fc7cc271dad

  • SHA512

    aed2fd56063ec1d77bd858c796029922b85639ba2e1ae8951410ea86ef83e9be1b4ec8b51b06ecb9b594bfed3777dabc82b4d4858121e5aa29f44067d10de3fe

  • SSDEEP

    768:yKD3P8sw5fFAm0gPPoz6SsoFKrYutpzYx6dg3DOx1AFBV0dwPYaBbidbvLXdJA+Q:hLP8Z5hM3D0S0dwPYSXmEZKbz

Score
8/10
vmprotect

Malware Config

Signatures

  • VMProtect packed file 2 IoCs

    Detects executables packed with VMProtect commercial packer.

    vmprotect

Processes

  • C:\Users\Admin\AppData\Local\Temp\bc945ca93142be52361a37f7ddea312c6dc8b4312ac60beec1f22fc7cc271dad.exe
    "C:\Users\Admin\AppData\Local\Temp\bc945ca93142be52361a37f7ddea312c6dc8b4312ac60beec1f22fc7cc271dad.exe"
    1⤵
      PID:1256

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/1256-54-0x0000000000400000-0x0000000000410000-memory.dmp

      Filesize

      64KB

      Download

    • memory/1256-55-0x0000000000400000-0x0000000000410000-memory.dmp

      Filesize

      64KB

      Download