a4cc0172ebb869a59a8a716e01e8c093c973d292f7e33e79cecb77e5268fb325 | Triage

Submit
Reports

Overview

overview

7

Static

static

7

a4cc0172eb...25.exe

windows7-x64

7

a4cc0172eb...25.exe

windows10-2004-x64

7

Sharing

General

Target

a4cc0172ebb869a59a8a716e01e8c093c973d292f7e33e79cecb77e5268fb325
Size

5.8MB
Sample

230829-t8k9zsgh7t
MD5

d506ffd3449cdfd53bd5e2c38a12e760
SHA1

6da21e4134ca8f124944c6fd79e4d102e45b9750
SHA256

a4cc0172ebb869a59a8a716e01e8c093c973d292f7e33e79cecb77e5268fb325
SHA512

a7c494b0bd843185f1398113e16a8fe50c460e747743e5b1ed746fe8058135f02b80eae71aff2a27eb8b43c95445c9ae8439c793f58f402e9909332e52c49827
SSDEEP

98304:xtJ/zFzPOCEszSKpOmGiYWjZ9gTMtNmny0MFGpVwgbtSd/159HauqaIfnagkFFJQ:xNzPOCEsHY4+MvmfWAVwgbtS11bauqal

Score

7^/10

vmprotect

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

a4cc0172ebb869a59a8a716e01e8c093c973d292f7e33e79cecb77e5268fb325.exe

Resource

win7-20230824-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

a4cc0172ebb869a59a8a716e01e8c093c973d292f7e33e79cecb77e5268fb325.exe

Resource

win10v2004-20230703-en

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Targets

- Target
  
  a4cc0172ebb869a59a8a716e01e8c093c973d292f7e33e79cecb77e5268fb325
- Size
  
  5.8MB
- MD5
  
  d506ffd3449cdfd53bd5e2c38a12e760
- SHA1
  
  6da21e4134ca8f124944c6fd79e4d102e45b9750
- SHA256
  
  a4cc0172ebb869a59a8a716e01e8c093c973d292f7e33e79cecb77e5268fb325
- SHA512
  
  a7c494b0bd843185f1398113e16a8fe50c460e747743e5b1ed746fe8058135f02b80eae71aff2a27eb8b43c95445c9ae8439c793f58f402e9909332e52c49827
- SSDEEP
  
  98304:xtJ/zFzPOCEszSKpOmGiYWjZ9gTMtNmny0MFGpVwgbtSd/159HauqaIfnagkFFJQ:xNzPOCEsHY4+MvmfWAVwgbtS11bauqal
Score

7^/10

vmprotect
- VMProtect packed file
  Detects executables packed with VMProtect commercial packer.
  vmprotect
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy