3375767161b3b427842c995a98a98beb09362ee1ff470bf574ceee69106d0e5d | Triage

Submit
Reports

Overview

overview

7

Static

static

7

3375767161...5d.exe

windows7-x64

7

3375767161...5d.exe

windows10-2004-x64

7

Sharing

General

Target

3375767161b3b427842c995a98a98beb09362ee1ff470bf574ceee69106d0e5d
Size

1.7MB
Sample

230711-qwfxysad9x
MD5

50faaa9eeb829d1274455f64a660af0d
SHA1

d7235bcc03501e75bca4afd39a6ff14707ca990d
SHA256

3375767161b3b427842c995a98a98beb09362ee1ff470bf574ceee69106d0e5d
SHA512

c7b2ef612cc3a55da2de667c331af36bd394ce1f28f80332640bafc7e8d36a7b5bc5aca32db7efaaaf8411acbc50221cfd9b87671c48cfe2cce5faaf02251fc6
SSDEEP

49152:ZfaqmxNR7rVnCuIUfXxR1MFttORGBUgkz9XVdtqpL5W6AWFShGyYjRXJiKX0ycWt:Zfa3xNR7rVnCuIUfXxR1MFttORGBUgky

Score

7^/10

vmprotect

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

3375767161b3b427842c995a98a98beb09362ee1ff470bf574ceee69106d0e5d.exe

Resource

win7-20230703-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

3375767161b3b427842c995a98a98beb09362ee1ff470bf574ceee69106d0e5d.exe

Resource

win10v2004-20230703-en

windows10-2004-x64

15 signatures

150 seconds

Malware Config

Targets

- Target
  
  3375767161b3b427842c995a98a98beb09362ee1ff470bf574ceee69106d0e5d
- Size
  
  1.7MB
- MD5
  
  50faaa9eeb829d1274455f64a660af0d
- SHA1
  
  d7235bcc03501e75bca4afd39a6ff14707ca990d
- SHA256
  
  3375767161b3b427842c995a98a98beb09362ee1ff470bf574ceee69106d0e5d
- SHA512
  
  c7b2ef612cc3a55da2de667c331af36bd394ce1f28f80332640bafc7e8d36a7b5bc5aca32db7efaaaf8411acbc50221cfd9b87671c48cfe2cce5faaf02251fc6
- SSDEEP
  
  49152:ZfaqmxNR7rVnCuIUfXxR1MFttORGBUgkz9XVdtqpL5W6AWFShGyYjRXJiKX0ycWt:Zfa3xNR7rVnCuIUfXxR1MFttORGBUgky
Score

7^/10

vmprotect
- Drops startup file
- Executes dropped EXE
- Loads dropped DLL
- VMProtect packed file
  Detects executables packed with VMProtect commercial packer.
  vmprotect
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy