Overview

overview

7

Static

static

7

4a673e2e7e...58.exe

windows7-x64

7

4a673e2e7e...58.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    4a673e2e7e8d965eeba0b5e6c2f66065e6631460ae9cd8a19779d2f23d19c758

  • Size

    5.0MB

  • Sample

    230328-ewejcagh63

  • MD5

    f74bd5f56433110b95565e56f07afd8e

  • SHA1

    5d44f174c65a052f7479aa3726def72a44145288

  • SHA256

    4a673e2e7e8d965eeba0b5e6c2f66065e6631460ae9cd8a19779d2f23d19c758

  • SHA512

    715507e2ae43f1e6dc3f6410184b62915504b4f0465fcca22911db928f7fd4ae7629cc59b0e1e72abb6b3cbb69a19a5095e43190f4c2ddb6a51db1fa840e0662

  • SSDEEP

    98304:0g1glG4ajy2toG3AMzo3kDS0TDPQqKiuW3Am1HF3F/DudvwUuI+Qz8aY4v:084H0CBigCD2vwHIX8aY4v

Score
7/10
vmprotect

Malware Config

Targets

    • Target

      4a673e2e7e8d965eeba0b5e6c2f66065e6631460ae9cd8a19779d2f23d19c758

    • Size

      5.0MB

    • MD5

      f74bd5f56433110b95565e56f07afd8e

    • SHA1

      5d44f174c65a052f7479aa3726def72a44145288

    • SHA256

      4a673e2e7e8d965eeba0b5e6c2f66065e6631460ae9cd8a19779d2f23d19c758

    • SHA512

      715507e2ae43f1e6dc3f6410184b62915504b4f0465fcca22911db928f7fd4ae7629cc59b0e1e72abb6b3cbb69a19a5095e43190f4c2ddb6a51db1fa840e0662

    • SSDEEP

      98304:0g1glG4ajy2toG3AMzo3kDS0TDPQqKiuW3Am1HF3F/DudvwUuI+Qz8aY4v:084H0CBigCD2vwHIX8aY4v

    Score
    7/10
    vmprotect

    • Loads dropped DLL

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

      vmprotect
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks