Overview

overview

7

Static

static

7

b68a2bd35c...f3.exe

windows7-x64

7

b68a2bd35c...f3.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    240s
  • max time network
    275s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    08/10/2023, 01:23

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    b68a2bd35c395e017e0df1da60863fa8fd22d0ba1d8705213bcbe2c0bfe695f3.exe

  • Size

    8.1MB

  • MD5

    025fcbf6aee3ebb5f108ab2ca24e4d67

  • SHA1

    094d8b7af18c24e3f8fecba43e886cf03c9a884c

  • SHA256

    b68a2bd35c395e017e0df1da60863fa8fd22d0ba1d8705213bcbe2c0bfe695f3

  • SHA512

    c51a5a4d622d6c00a895e4d64ec9c02a82634b02fa448116e0b137af4d67e7e8d93dea368438d0f10b6e61135c02f6f29c10e66a65e3b9c9487ac0a24fe6ed86

  • SSDEEP

    98304:s+3F7xSaO0cGwMx48vypM3wF6zq8GInZZsmPZM3m2+GvkEwBWGQC376ueEpniBdc:s+DJwMeecM2vU88ZM3/tOPB5qOf

Score
7/10
vmprotect

Malware Config

Signatures

  • VMProtect packed file 2 IoCs

    Detects executables packed with VMProtect commercial packer.

    vmprotect

Processes

  • C:\Users\Admin\AppData\Local\Temp\b68a2bd35c395e017e0df1da60863fa8fd22d0ba1d8705213bcbe2c0bfe695f3.exe
    "C:\Users\Admin\AppData\Local\Temp\b68a2bd35c395e017e0df1da60863fa8fd22d0ba1d8705213bcbe2c0bfe695f3.exe"
    1⤵
      PID:2560

    Network

          MITRE ATT&CK Matrix

          Replay Monitor

          Loading Replay Monitor...

          Downloads

          • memory/2560-0-0x0000000000400000-0x0000000000C25000-memory.dmp

            Filesize

            8.1MB

            Download

          • memory/2560-1-0x0000000000400000-0x0000000000C25000-memory.dmp

            Filesize

            8.1MB

            Download