General

  • Target

    f64ccb9df2b5df5287485f13c727d9dd

  • Size

    4.4MB

  • Sample

    231220-vye6naeedm

  • MD5

    f64ccb9df2b5df5287485f13c727d9dd

  • SHA1

    863c3faace90bba1563a97dfa788f15799032192

  • SHA256

    370623f3b732194c8497a12cfc2e906755f145c61ab8715c22d98f6fd7cf66d4

  • SHA512

    7fa90a89472baeb70898028c891d70dc50d8440a5dcaee557c6cc5faec5ae97c331ebfe4c0bc0a64a67a662c4af3da3babbf07727f318bba24fd7d25c8bc51d5

  • SSDEEP

    98304:B7AJbg4GyrPsJG9Ey+K6JJkoyw4di0agX1Bv0CsG12iNM/:B7AJbgJyrr+KwV/G71F0LclNM

Score
7/10

Malware Config

Targets

    • Target

      f64ccb9df2b5df5287485f13c727d9dd

    • Size

      4.4MB

    • MD5

      f64ccb9df2b5df5287485f13c727d9dd

    • SHA1

      863c3faace90bba1563a97dfa788f15799032192

    • SHA256

      370623f3b732194c8497a12cfc2e906755f145c61ab8715c22d98f6fd7cf66d4

    • SHA512

      7fa90a89472baeb70898028c891d70dc50d8440a5dcaee557c6cc5faec5ae97c331ebfe4c0bc0a64a67a662c4af3da3babbf07727f318bba24fd7d25c8bc51d5

    • SSDEEP

      98304:B7AJbg4GyrPsJG9Ey+K6JJkoyw4di0agX1Bv0CsG12iNM/:B7AJbgJyrr+KwV/G71F0LclNM

    Score
    7/10
    • Executes dropped EXE

    • Loads dropped DLL

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

    • Legitimate hosting services abused for malware hosting/C2

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks