9bc846621499556f829e0d93e423e032ac664b6d3c1add7af24a7e312f5c0f28 | Triage

Submit
Reports

Overview

overview

7

Static

static

7

9bc8466214...28.exe

windows7-x64

7

9bc8466214...28.exe

windows10-2004-x64

7

Sharing

General

Target

9bc846621499556f829e0d93e423e032ac664b6d3c1add7af24a7e312f5c0f28
Size

3.9MB
Sample

230308-b9x13ach7z
MD5

75da5595fc297e6ba679f4421e47e8c6
SHA1

82fe2b87cdcc21abfdc982260462fab6e0a8ee79
SHA256

9bc846621499556f829e0d93e423e032ac664b6d3c1add7af24a7e312f5c0f28
SHA512

a674a9b75186970f9e3b0c7dba580f7170cc11a76f1617df0eddb380c0613cde3c117205a7c70a7678f466d5e0f068e70fee21c18007c4aebabd045c8cd9977d
SSDEEP

98304:H9tTDaLicPEC/15CVY3ySGbgSrsywFftsZhwdO:HjT23sC/PCVk/8rKF1sZhwdO

Score

7^/10

aspackv2 vmprotect

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

9bc846621499556f829e0d93e423e032ac664b6d3c1add7af24a7e312f5c0f28.exe

Resource

win7-20230220-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

9bc846621499556f829e0d93e423e032ac664b6d3c1add7af24a7e312f5c0f28.exe

Resource

win10v2004-20230221-en

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  9bc846621499556f829e0d93e423e032ac664b6d3c1add7af24a7e312f5c0f28
- Size
  
  3.9MB
- MD5
  
  75da5595fc297e6ba679f4421e47e8c6
- SHA1
  
  82fe2b87cdcc21abfdc982260462fab6e0a8ee79
- SHA256
  
  9bc846621499556f829e0d93e423e032ac664b6d3c1add7af24a7e312f5c0f28
- SHA512
  
  a674a9b75186970f9e3b0c7dba580f7170cc11a76f1617df0eddb380c0613cde3c117205a7c70a7678f466d5e0f068e70fee21c18007c4aebabd045c8cd9977d
- SSDEEP
  
  98304:H9tTDaLicPEC/15CVY3ySGbgSrsywFftsZhwdO:HjT23sC/PCVk/8rKF1sZhwdO
Score

7^/10

vmprotect
- Executes dropped EXE
- Loads dropped DLL
- VMProtect packed file
  Detects executables packed with VMProtect commercial packer.
  vmprotect
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy