249ef6343e3a6316852abefe7c73400b57ff7204a05ff46011a00847ba52053e | Triage

Submit
Reports

Overview

overview

7

Static

static

3

dridex

windows10-1703-x64

7

Sharing

General

Target

249ef6343e3a6316852abefe7c73400b57ff7204a05ff46011a00847ba52053e
Size

6.0MB
Sample

230531-bfbwqscf7w
MD5

7aa1b586401a170e3326782cce367025
SHA1

2ef37a3ecd522e5f954fca4eae4eb2c75bf155eb
SHA256

249ef6343e3a6316852abefe7c73400b57ff7204a05ff46011a00847ba52053e
SHA512

3e674e6c80f725ce6cb785089e9dd7e14961f6e32c6305b73baa945c7572b4857af2fb406df9f6c4632b1cb1ebb5ffdbf5173ee98d0c5678ddfc94f8d5f8cd60
SSDEEP

98304:2pReUPZtlw98TK6xFlbX6ujDqb2lyMJA1VHByvPk2xGtrNZMHQr8dFh5dQ5:N4Nwz6rlKu6bYfJApYk2cJAQwd5C

Score

7^/10

vmprotect

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

249ef6343e3a6316852abefe7c73400b57ff7204a05ff46011a00847ba52053e.exe

Resource

win10-20230220-en

windows10-1703-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  249ef6343e3a6316852abefe7c73400b57ff7204a05ff46011a00847ba52053e
- Size
  
  6.0MB
- MD5
  
  7aa1b586401a170e3326782cce367025
- SHA1
  
  2ef37a3ecd522e5f954fca4eae4eb2c75bf155eb
- SHA256
  
  249ef6343e3a6316852abefe7c73400b57ff7204a05ff46011a00847ba52053e
- SHA512
  
  3e674e6c80f725ce6cb785089e9dd7e14961f6e32c6305b73baa945c7572b4857af2fb406df9f6c4632b1cb1ebb5ffdbf5173ee98d0c5678ddfc94f8d5f8cd60
- SSDEEP
  
  98304:2pReUPZtlw98TK6xFlbX6ujDqb2lyMJA1VHByvPk2xGtrNZMHQr8dFh5dQ5:N4Nwz6rlKu6bYfJApYk2cJAQwd5C
Score

7^/10

vmprotect
- Executes dropped EXE
- VMProtect packed file
  Detects executables packed with VMProtect commercial packer.
  vmprotect
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Remote System Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy