turian | 67c911510e257b341be77bc2a88cedc99ace2af852f7825d9710016619875e80 | Triage

Submit
Reports

Overview

overview

Static

static

7

67c911510e...80.exe

windows7-x64

67c911510e...80.exe

windows10-2004-x64

Sharing

General

Target

67c911510e257b341be77bc2a88cedc99ace2af852f7825d9710016619875e80.bin
Size

559KB
Sample

230323-zagrssaa35
MD5

7b3f7c751a5c3b1823baac97ccb4d4c6
SHA1

615b5a92b6066fc992dae0d5f6abf29fe53cf2f9
SHA256

67c911510e257b341be77bc2a88cedc99ace2af852f7825d9710016619875e80
SHA512

1a42e7e925c8d9c93572c27d0fa702d1714618eb7f82288320fe1849553ed2bed52624dc30d5b2996cd973e64cc9624b564d40d856424cb060fb9ec3e4e33b07
SSDEEP

12288:399xY4k5NNrT+S4+r0qN2v/7oqYvxpteC+31PHzHxpAUSiVHR84N:3rx85PrTJr0qAv/cqG6l1PHzHvCiVHRZ

Score

10^/10

turian backdoor vmprotect

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

67c911510e257b341be77bc2a88cedc99ace2af852f7825d9710016619875e80.exe

Resource

win7-20230220-en

turian backdoor vmprotect

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

67c911510e257b341be77bc2a88cedc99ace2af852f7825d9710016619875e80.exe

Resource

win10v2004-20230220-en

turian backdoor vmprotect

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Extracted

Family

turian

C2

update.delldrivers.in

Targets

- Target
  
  67c911510e257b341be77bc2a88cedc99ace2af852f7825d9710016619875e80.bin
- Size
  
  559KB
- MD5
  
  7b3f7c751a5c3b1823baac97ccb4d4c6
- SHA1
  
  615b5a92b6066fc992dae0d5f6abf29fe53cf2f9
- SHA256
  
  67c911510e257b341be77bc2a88cedc99ace2af852f7825d9710016619875e80
- SHA512
  
  1a42e7e925c8d9c93572c27d0fa702d1714618eb7f82288320fe1849553ed2bed52624dc30d5b2996cd973e64cc9624b564d40d856424cb060fb9ec3e4e33b07
- SSDEEP
  
  12288:399xY4k5NNrT+S4+r0qN2v/7oqYvxpteC+31PHzHxpAUSiVHR84N:3rx85PrTJr0qAv/cqG6l1PHzHvCiVHRZ
Score

10^/10

turian backdoor vmprotect
- turian
  C++ Backdoor attributed to the chinese APT15.
  backdoor turian
- VMProtect packed file
  Detects executables packed with VMProtect commercial packer.
  vmprotect
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

turianbackdoorvmprotect

behavioral2

turianbackdoorvmprotect

© 2018-2024

Terms | Privacy