fcc8eee6d906d93800a9ab2b53d09cc87d84ff08f5da4a3231319014cc4d9d89 | Triage

Submit
Reports

Overview

overview

7

Static

static

7

fcc8eee6d9...89.exe

windows7-x64

7

fcc8eee6d9...89.exe

windows10-2004-x64

7

Sharing

General

Target

fcc8eee6d906d93800a9ab2b53d09cc87d84ff08f5da4a3231319014cc4d9d89
Size

4.4MB
Sample

231012-gb1l7acd93
MD5

36a57c9d51a36357541d1b6fab2f26a6
SHA1

9ec285745cebcdac9056534564bedfff26ed0733
SHA256

fcc8eee6d906d93800a9ab2b53d09cc87d84ff08f5da4a3231319014cc4d9d89
SHA512

28c0459144a26ddede9d464e21beac292b23b28cb418f2df5af03689493a4af4c639f724383c7c3184c6f6c527c082255ff677173f2821e9176aef90709053fc
SSDEEP

98304:A/U4y5jK8UBr6kRsNe0kysLUQV0DCw/1pWEFLb6dsbGqoA+x:AcZKtB2JeXysR0GPiL2dWwx

Score

7^/10

persistence vmprotect

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

fcc8eee6d906d93800a9ab2b53d09cc87d84ff08f5da4a3231319014cc4d9d89.exe

Resource

win7-20230831-en

persistence vmprotect

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

fcc8eee6d906d93800a9ab2b53d09cc87d84ff08f5da4a3231319014cc4d9d89.exe

Resource

win10v2004-20230915-en

persistence vmprotect

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  fcc8eee6d906d93800a9ab2b53d09cc87d84ff08f5da4a3231319014cc4d9d89
- Size
  
  4.4MB
- MD5
  
  36a57c9d51a36357541d1b6fab2f26a6
- SHA1
  
  9ec285745cebcdac9056534564bedfff26ed0733
- SHA256
  
  fcc8eee6d906d93800a9ab2b53d09cc87d84ff08f5da4a3231319014cc4d9d89
- SHA512
  
  28c0459144a26ddede9d464e21beac292b23b28cb418f2df5af03689493a4af4c639f724383c7c3184c6f6c527c082255ff677173f2821e9176aef90709053fc
- SSDEEP
  
  98304:A/U4y5jK8UBr6kRsNe0kysLUQV0DCw/1pWEFLb6dsbGqoA+x:AcZKtB2JeXysR0GPiL2dWwx
Score

7^/10

persistence vmprotect
- Executes dropped EXE
- Loads dropped DLL
- VMProtect packed file
  Detects executables packed with VMProtect commercial packer.
  vmprotect
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

persistencevmprotect

behavioral2

persistencevmprotect

© 2018-2025

Terms | Privacy