8e709be93c448d1957e00181a85cf244440d3bafb0cebd0788c271ae0cca3cff | Triage

Submit
Reports

Overview

overview

8

Static

static

8

8e709be93c...ff.exe

windows7-x64

8

8e709be93c...ff.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

Target

8e709be93c448d1957e00181a85cf244440d3bafb0cebd0788c271ae0cca3cff
Size

881KB
Sample

221205-f9j7esee4y
MD5

60d86ba8cb1ad3d45452d64d11c7ce24
SHA1

398f6f367f73ed358dd13174e1d1fefdadb6fb9c
SHA256

8e709be93c448d1957e00181a85cf244440d3bafb0cebd0788c271ae0cca3cff
SHA512

eecf92092057ed3569ca15763ee31129b68ea5efdfd5acaaff88d5560527bdd57c69c928ff86a14171e19d928c58b9448aa6e92034665033381e83992a9d1dba
SSDEEP

24576:xgveG+HFLpv1crnz4N2iN8bCBuP/2PjKzg5:AeG+HFL04N/8b5P+PjAO

Score

8^/10

persistence vmprotect

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

8e709be93c448d1957e00181a85cf244440d3bafb0cebd0788c271ae0cca3cff.exe

Resource

win7-20221111-en

persistence vmprotect

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

8e709be93c448d1957e00181a85cf244440d3bafb0cebd0788c271ae0cca3cff.exe

Resource

win10v2004-20221111-en

persistence vmprotect

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  8e709be93c448d1957e00181a85cf244440d3bafb0cebd0788c271ae0cca3cff
- Size
  
  881KB
- MD5
  
  60d86ba8cb1ad3d45452d64d11c7ce24
- SHA1
  
  398f6f367f73ed358dd13174e1d1fefdadb6fb9c
- SHA256
  
  8e709be93c448d1957e00181a85cf244440d3bafb0cebd0788c271ae0cca3cff
- SHA512
  
  eecf92092057ed3569ca15763ee31129b68ea5efdfd5acaaff88d5560527bdd57c69c928ff86a14171e19d928c58b9448aa6e92034665033381e83992a9d1dba
- SSDEEP
  
  24576:xgveG+HFLpv1crnz4N2iN8bCBuP/2PjKzg5:AeG+HFL04N/8b5P+PjAO
Score

8^/10

persistence vmprotect
- Executes dropped EXE
- VMProtect packed file
  Detects executables packed with VMProtect commercial packer.
  vmprotect
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

persistencevmprotect

behavioral2

persistencevmprotect

© 2018-2025

Terms | Privacy