General

  • Target

    348eaf73445326b0b37538f00e4ee0b2

  • Size

    484KB

  • Sample

    231221-rf9e1ahffn

  • MD5

    348eaf73445326b0b37538f00e4ee0b2

  • SHA1

    a410a74e977879a31e3e312d55823b1f443c990c

  • SHA256

    58a3305e60e836d22e5b0bb68850b92d6077e74c30b0152625052b0680b95c88

  • SHA512

    26fd1e1374e77f169e3ef4a0e8551e68b1085f47ca480521ea0202c088e84fe249e2371f927ca2e1e94d5158b58122168f50951a56765cb9641bc55fd05791b8

  • SSDEEP

    12288:sa68Ux5GpXshfJzB0t1kHeiNMCygI8TJu0:saQ5GJGfJWtINMufI0

Score
7/10

Malware Config

Targets

    • Target

      348eaf73445326b0b37538f00e4ee0b2

    • Size

      484KB

    • MD5

      348eaf73445326b0b37538f00e4ee0b2

    • SHA1

      a410a74e977879a31e3e312d55823b1f443c990c

    • SHA256

      58a3305e60e836d22e5b0bb68850b92d6077e74c30b0152625052b0680b95c88

    • SHA512

      26fd1e1374e77f169e3ef4a0e8551e68b1085f47ca480521ea0202c088e84fe249e2371f927ca2e1e94d5158b58122168f50951a56765cb9641bc55fd05791b8

    • SSDEEP

      12288:sa68Ux5GpXshfJzB0t1kHeiNMCygI8TJu0:saQ5GJGfJWtINMufI0

    Score
    7/10
    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Matrix

Tasks