4c9c53f825f7106c43dd244c43793f22d7d6a294fed7a71e3e15d218a621aa95

Sharing

Copy URL Twitter E-mail

General

Target

4c9c53f825f7106c43dd244c43793f22d7d6a294fed7a71e3e15d218a621aa95
Size

932KB
MD5

f623dba9c242041254f56353b67ce2a5
SHA1

dd6a46c92ec525b2a39ab5d8ab2c793871a9a4b0
SHA256

4c9c53f825f7106c43dd244c43793f22d7d6a294fed7a71e3e15d218a621aa95
SHA512

b3f71c93e13818d7ed6b9047535e8cd71c35cb54215e263bd68d55e0fdf1196472cb3c57f00ec14326f4262631d35570a476d679bd4465777931ce1b25ef21b8
SSDEEP

24576:6Q3WgW2WOmxHmY34t8Lf8hGkQLk1XmmxHcWgW2W:6Q3WgW2WOmxHma4tcct4YmmxHcWgW2W

Score

7^/10

vmprotect

Malware Config

Signatures

VMProtect packed file 1 IoCs

Detects executables packed with VMProtect commercial packer.

vmprotect

resource	yara_rule
sample	vmprotect

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4c9c53f825f7106c43dd244c43793f22d7d6a294fed7a71e3e15d218a621aa95

Files

4c9c53f825f7106c43dd244c43793f22d7d6a294fed7a71e3e15d218a621aa95
.exe windows:4 windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 46KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 15KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.!rc!
Size: 249KB - Virtual size: 252KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vmp0
Size: 85KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vmp1
Size: 233KB - Virtual size: 15.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.WEN
Size: 512B - Virtual size: 2.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ROU
Size: 41KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.Silvana
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 256KB - Virtual size: 256KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

.text Size: 46KB - Virtual size: 48KB

.rdata Size: 15KB - Virtual size: 16KB

.data Size: 3KB - Virtual size: 4KB

.!rc! Size: 249KB - Virtual size: 252KB

.vmp0 Size: 85KB - Virtual size: 88KB

.vmp1 Size: 233KB - Virtual size: 15.2MB

.WEN Size: 512B - Virtual size: 2.0MB

.ROU Size: 41KB - Virtual size: 60KB

.Silvana Size: 512B - Virtual size: 4KB

.rsrc Size: 256KB - Virtual size: 256KB

.text
Size: 46KB - Virtual size: 48KB

.rdata
Size: 15KB - Virtual size: 16KB

.data
Size: 3KB - Virtual size: 4KB

.!rc!
Size: 249KB - Virtual size: 252KB

.vmp0
Size: 85KB - Virtual size: 88KB

.vmp1
Size: 233KB - Virtual size: 15.2MB

.WEN
Size: 512B - Virtual size: 2.0MB

.ROU
Size: 41KB - Virtual size: 60KB

.Silvana
Size: 512B - Virtual size: 4KB

.rsrc
Size: 256KB - Virtual size: 256KB