Overview

overview

7

Static

static

7

49c2efb3f6...3e.exe

windows7-x64

7

49c2efb3f6...3e.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    49c2efb3f6420a2f3a01e661828ed9c2215f9039b969a26475afd7aebac7c83e.exe.zip

  • Size

    2.6MB

  • MD5

    11af1df98dfdea38021588b2fd08c553

  • SHA1

    42f3cb364b29fa6971f0c60832c5d723834c2d21

  • SHA256

    c588cfdbea735082020cc241f47c45b8b3e4d939ba072ce144861fbe44579747

  • SHA512

    7b67c9bf5e2f0505a1b47893ed7109d2ddb82a303402556a7abb15f262ba2c572f98c6fd81332c7a8b9efeb4598a08dbe382e7b33b555f2dafefbf070c49cbd6

  • SSDEEP

    49152:UVUL5oLHm9qcgTO4kcbkBCCNI/VONkBrxyFi4MhGjKq9JAGJMFLwNrS:6UTETVNKc/VOGt4Fi4MhGWiAGJMpwI

Score
7/10
vmprotect

Malware Config

Signatures

  • VMProtect packed file 1 IoCs

    Detects executables packed with VMProtect commercial packer.

    vmprotect
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 49c2efb3f6420a2f3a01e661828ed9c2215f9039b969a26475afd7aebac7c83e.exe.zip
    .zip

    Password: infected

  • 49c2efb3f6420a2f3a01e661828ed9c2215f9039b969a26475afd7aebac7c83e.exe
    .exe windows:4 windows x86


    Headers

    Exports

    Sections