dde12d850128e77f213c5d77ec241700d981a12b95c1a5d5bdd68bf9fa11f568 | Triage

Submit
Reports

Overview

overview

8

Static

static

8

dde12d8501...68.dll

windows7-x64

8

dde12d8501...68.dll

windows10-2004-x64

8

Sharing

General

Target

dde12d850128e77f213c5d77ec241700d981a12b95c1a5d5bdd68bf9fa11f568
Size

261KB
Sample

221206-3xrr3afe95
MD5

baa2cbdeace3eea1db9a36e6ee5310cb
SHA1

8720ee03304e8e47e057f4b858c1d5113b3ac78d
SHA256

dde12d850128e77f213c5d77ec241700d981a12b95c1a5d5bdd68bf9fa11f568
SHA512

858f0cde956ec8086e4885bdcf7df41bc49a63b86f3a36e3f1f35a1c68499368d9939332b8e1a3dffcc422ce8bd60171e5548009efdc8d8e7fdda0837000c7bf
SSDEEP

6144:R5lH3QxhocppsDuAxI8PQW60Q4f4HiNnOv+X:RHHmocppsjK1W6o4HTq

Score

8^/10

vmprotect

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

dde12d850128e77f213c5d77ec241700d981a12b95c1a5d5bdd68bf9fa11f568.dll

Resource

win7-20220901-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

dde12d850128e77f213c5d77ec241700d981a12b95c1a5d5bdd68bf9fa11f568.dll

Resource

win10v2004-20220812-en

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Targets

- Target
  
  dde12d850128e77f213c5d77ec241700d981a12b95c1a5d5bdd68bf9fa11f568
- Size
  
  261KB
- MD5
  
  baa2cbdeace3eea1db9a36e6ee5310cb
- SHA1
  
  8720ee03304e8e47e057f4b858c1d5113b3ac78d
- SHA256
  
  dde12d850128e77f213c5d77ec241700d981a12b95c1a5d5bdd68bf9fa11f568
- SHA512
  
  858f0cde956ec8086e4885bdcf7df41bc49a63b86f3a36e3f1f35a1c68499368d9939332b8e1a3dffcc422ce8bd60171e5548009efdc8d8e7fdda0837000c7bf
- SSDEEP
  
  6144:R5lH3QxhocppsDuAxI8PQW60Q4f4HiNnOv+X:RHHmocppsjK1W6o4HTq
Score

8^/10

vmprotect
- Executes dropped EXE
- VMProtect packed file
  Detects executables packed with VMProtect commercial packer.
  vmprotect
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy