Overview

overview

7

Static

static

7

cc829ccd1d...62.exe

windows7-x64

7

cc829ccd1d...62.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    cc829ccd1dd38315e07bda9dab9d8412ca8217126c9f6f4951b1f3bd02777262

  • Size

    15.6MB

  • Sample

    230918-3hl82adb8y

  • MD5

    ca2ac00fa49ad23941ab7a3c2c6d6654

  • SHA1

    10439f4af1bd67c62c3b26ada4b3446eb863c2c3

  • SHA256

    cc829ccd1dd38315e07bda9dab9d8412ca8217126c9f6f4951b1f3bd02777262

  • SHA512

    92ba87bb540c0b3068bf9b29e0e4e828a81a4d510cec8be1c899f8489c218818d86bae3a2a44d0008bcbec8c729d379bbe8f40cf8fa7b6e72ba19d7baf393ebb

  • SSDEEP

    196608:24GJfeSFc9pVrYk13qzx3UXAErecHjm5kac+A4mOdpXYV8/r8+MMBCvvEbfcISEn:pcfQ8PUXAuecD3ac+AbDVYrAvvPISpa

Score
7/10
vmprotect

Malware Config

Targets

    • Target

      cc829ccd1dd38315e07bda9dab9d8412ca8217126c9f6f4951b1f3bd02777262

    • Size

      15.6MB

    • MD5

      ca2ac00fa49ad23941ab7a3c2c6d6654

    • SHA1

      10439f4af1bd67c62c3b26ada4b3446eb863c2c3

    • SHA256

      cc829ccd1dd38315e07bda9dab9d8412ca8217126c9f6f4951b1f3bd02777262

    • SHA512

      92ba87bb540c0b3068bf9b29e0e4e828a81a4d510cec8be1c899f8489c218818d86bae3a2a44d0008bcbec8c729d379bbe8f40cf8fa7b6e72ba19d7baf393ebb

    • SSDEEP

      196608:24GJfeSFc9pVrYk13qzx3UXAErecHjm5kac+A4mOdpXYV8/r8+MMBCvvEbfcISEn:pcfQ8PUXAuecD3ac+AbDVYrAvvPISpa

    Score
    7/10
    vmprotect

    • Loads dropped DLL

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

      vmprotect

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks