General

  • Target

    664e4a8c72c1b248c1f8e124579b36ce6cc1ba862bcf1449d73ed62d19b3d9ec

  • Size

    4.6MB

  • Sample

    231204-crtflage9t

  • MD5

    fa2216cd9688194ea02ee5383afae70a

  • SHA1

    67663887bf6e2a2fa0fca8f6be003d84e24a6deb

  • SHA256

    664e4a8c72c1b248c1f8e124579b36ce6cc1ba862bcf1449d73ed62d19b3d9ec

  • SHA512

    8b8f6fa45bd8c74c66255341381d971fa7455e25bcab9771e74088fadc7a4020839836dfd7ea8e7187430415ed1049c2e48982c20f6ec7e2dc83084f08b57b2d

  • SSDEEP

    98304:bDwYCwpB+CTsF8av0YTjarF2kV/5G+qSWrXA3:PwY1pB+CTsOaM0+R75G+qtQ

Score
7/10

Malware Config

Targets

    • Target

      664e4a8c72c1b248c1f8e124579b36ce6cc1ba862bcf1449d73ed62d19b3d9ec

    • Size

      4.6MB

    • MD5

      fa2216cd9688194ea02ee5383afae70a

    • SHA1

      67663887bf6e2a2fa0fca8f6be003d84e24a6deb

    • SHA256

      664e4a8c72c1b248c1f8e124579b36ce6cc1ba862bcf1449d73ed62d19b3d9ec

    • SHA512

      8b8f6fa45bd8c74c66255341381d971fa7455e25bcab9771e74088fadc7a4020839836dfd7ea8e7187430415ed1049c2e48982c20f6ec7e2dc83084f08b57b2d

    • SSDEEP

      98304:bDwYCwpB+CTsF8av0YTjarF2kV/5G+qSWrXA3:PwY1pB+CTsOaM0+R75G+qtQ

    Score
    7/10
    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Matrix

Tasks