Overview

overview

7

Static

static

3

a02.exe

windows7-x64

7

a02.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a02.exe

  • Size

    6.0MB

  • Sample

    230527-jn9fzabb76

  • MD5

    820241820224a5c7eed0ca74b7420361

  • SHA1

    4ad3588ecd226fde7fe8543c281290997a4ad9ac

  • SHA256

    7740df954417683f1614403a7fa6607e7b9002ae045e25a07c8fd4e67f0b3c3f

  • SHA512

    17cc22e2d7c59bc86b5145e2990b76faf2602c3a4c19d6c7b23a84067240455e1293c857c1966217c26d8ae4baded83b612ed5325c7e5dea3bfa42335aa0d59c

  • SSDEEP

    98304:x4S0clXTS9EIv1281Ey0l6iEz0JzA3+rBAlrHC3dNtCLChB:v/lX3I9R1EFlnxJzVA1ALI+hB

Score
7/10
vmprotect

Malware Config

Targets

    • Target

      a02.exe

    • Size

      6.0MB

    • MD5

      820241820224a5c7eed0ca74b7420361

    • SHA1

      4ad3588ecd226fde7fe8543c281290997a4ad9ac

    • SHA256

      7740df954417683f1614403a7fa6607e7b9002ae045e25a07c8fd4e67f0b3c3f

    • SHA512

      17cc22e2d7c59bc86b5145e2990b76faf2602c3a4c19d6c7b23a84067240455e1293c857c1966217c26d8ae4baded83b612ed5325c7e5dea3bfa42335aa0d59c

    • SSDEEP

      98304:x4S0clXTS9EIv1281Ey0l6iEz0JzA3+rBAlrHC3dNtCLChB:v/lX3I9R1EFlnxJzVA1ALI+hB

    Score
    7/10
    vmprotect

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

      vmprotect

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks