Overview

overview

7

Static

static

7

Loader.exe

windows7-x64

7

Loader.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Loader.exe

  • Size

    7.1MB

  • Sample

    230710-rcqtgsba26

  • MD5

    1f6e670d51ff78e4a2c4e89674858de4

  • SHA1

    50f3984fff72f638d327a97efa12013ed295884b

  • SHA256

    74a1cbbe478906599980089b3a11fcddba72b5cdc191fd686dd462511fb2ac15

  • SHA512

    4f6a22c8d74772b36ccbc6e403d376ed296c331b13b0088d09c2d8dcd147114d678c965f0112051c4ec886aeeab8085e8d739010cc22959340b8181fb8775a78

  • SSDEEP

    98304:29A6NjA6enpNGp6V3zwURFq4MnlqLVsmgZ/4rsRvRJXz/AS8K7iV39anO2jgx2zl:0FuNZmnssXCsRfLNfiGzu4Uq2ghFOt

Score
7/10
discoveryvmprotect

Malware Config

Targets

    • Target

      Loader.exe

    • Size

      7.1MB

    • MD5

      1f6e670d51ff78e4a2c4e89674858de4

    • SHA1

      50f3984fff72f638d327a97efa12013ed295884b

    • SHA256

      74a1cbbe478906599980089b3a11fcddba72b5cdc191fd686dd462511fb2ac15

    • SHA512

      4f6a22c8d74772b36ccbc6e403d376ed296c331b13b0088d09c2d8dcd147114d678c965f0112051c4ec886aeeab8085e8d739010cc22959340b8181fb8775a78

    • SSDEEP

      98304:29A6NjA6enpNGp6V3zwURFq4MnlqLVsmgZ/4rsRvRJXz/AS8K7iV39anO2jgx2zl:0FuNZmnssXCsRfLNfiGzu4Uq2ghFOt

    Score
    7/10
    vmprotectdiscovery

    • Executes dropped EXE

    • Loads dropped DLL

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

      vmprotect

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks