Overview

overview

7

Static

static

7

672dacaa9c...4c.exe

windows7-x64

7

672dacaa9c...4c.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    24s
  • max time network
    34s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    11/10/2023, 15:36

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    672dacaa9c1ce2605b485fe732992e9bb156d8f88edf783f8d713c298411e44c.exe

  • Size

    13.9MB

  • MD5

    bf101bb23ed432a88b720c45522abdd5

  • SHA1

    32dab8c00bbeb31969e8da3b6d1ccb6d0b0a6227

  • SHA256

    672dacaa9c1ce2605b485fe732992e9bb156d8f88edf783f8d713c298411e44c

  • SHA512

    c5b5098d0cd8e0273521e7daf3a1110064576e4147654827ce5c5230f172e29d6383510aceb96d24accc5b66f2a0fa3c2215e3f10d0406fe636ed0b3e351de1e

  • SSDEEP

    196608:NHZ3Ts9Tqa6vuv0DHfFMuOFDz1TsIlyc8n7cB5G5lRuQF3OJdvAY:Aqa8HfOd36UYRpAdY

Score
7/10
vmprotect

Malware Config

Signatures

  • VMProtect packed file 2 IoCs

    Detects executables packed with VMProtect commercial packer.

    vmprotect

Processes

  • C:\Users\Admin\AppData\Local\Temp\672dacaa9c1ce2605b485fe732992e9bb156d8f88edf783f8d713c298411e44c.exe
    "C:\Users\Admin\AppData\Local\Temp\672dacaa9c1ce2605b485fe732992e9bb156d8f88edf783f8d713c298411e44c.exe"
    1⤵
      PID:2264

    Network

          MITRE ATT&CK Matrix

          Replay Monitor

          Loading Replay Monitor...

          Downloads

          • memory/2264-1-0x0000000000400000-0x00000000011EA000-memory.dmp

            Filesize

            13.9MB

            Download

          • memory/2264-0-0x0000000000400000-0x00000000011EA000-memory.dmp

            Filesize

            13.9MB

            Download