Overview

overview

7

Static

static

7

6ca50cd59a...e0.exe

windows7-x64

7

6ca50cd59a...e0.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    6ca50cd59a3da1fa0ebb21a718e435f1bf20bdf1819994db8743b7109f14abe0

  • Size

    10.0MB

  • Sample

    231126-q97ylahg5t

  • MD5

    0640b36dd3c85dbd7ea507ebafd0431b

  • SHA1

    32a61b5224ab5085751db53574325b0e084b794b

  • SHA256

    6ca50cd59a3da1fa0ebb21a718e435f1bf20bdf1819994db8743b7109f14abe0

  • SHA512

    d6b8124df153bcf43b315239de8a2015d2211cc5f9f09a95380d2e6cf8f85f5249ebbe28f9ec16eb9f2e87c0c98b5ac99b421b4d89a9e24c3b10f31fdeaaf0ec

  • SSDEEP

    196608:QoVJ7nxuQEuHLbX51bSELaw2ny/UWAF0eyFF3S7/xlVUzJXqe28qhmnvID/JPC7k:lVJ7nxuQEi/535XAieWC7rut6vlhmvP

Score
7/10
vmprotect

Malware Config

Targets

    • Target

      6ca50cd59a3da1fa0ebb21a718e435f1bf20bdf1819994db8743b7109f14abe0

    • Size

      10.0MB

    • MD5

      0640b36dd3c85dbd7ea507ebafd0431b

    • SHA1

      32a61b5224ab5085751db53574325b0e084b794b

    • SHA256

      6ca50cd59a3da1fa0ebb21a718e435f1bf20bdf1819994db8743b7109f14abe0

    • SHA512

      d6b8124df153bcf43b315239de8a2015d2211cc5f9f09a95380d2e6cf8f85f5249ebbe28f9ec16eb9f2e87c0c98b5ac99b421b4d89a9e24c3b10f31fdeaaf0ec

    • SSDEEP

      196608:QoVJ7nxuQEuHLbX51bSELaw2ny/UWAF0eyFF3S7/xlVUzJXqe28qhmnvID/JPC7k:lVJ7nxuQEi/535XAieWC7rut6vlhmvP

    Score
    7/10
    vmprotect

    • Loads dropped DLL

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

      vmprotect

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks