Overview

overview

8

Static

static

3

New Text Document.exe

windows10-1703-x64

8

Resubmissions

15-01-2024 21:02

240115-zvt8magaf4 10

13-01-2024 00:34

240113-aw6klshdf8 10

31-12-2023 01:14

231231-bl2z4scebl 10

21-12-2023 21:01

231221-zvczcaeffj 8

13-12-2023 01:28

231213-bvpfdaffa4 3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    New Text Document.exe

  • Size

    4KB

  • Sample

    231221-zvczcaeffj

  • MD5

    9ce4aaffc0cddb25b759e1ec9ab7102a

  • SHA1

    72e78508b65d61d4ae9620d180f4aa8dddb85399

  • SHA256

    8cc12ee9b2f09003ded9ca3e1846ed23b63325fe8d867e735a3388a9087bd87c

  • SHA512

    8f966188af4cb25368a6636f9a973e5c0aaf583bc89009c6604ed9a5e67451d7e417e0067b5c8a517835ab977355dde37c2c5495d7616aa7f82750a65dcab55f

  • SSDEEP

    48:6fWIcJ9lFEyU+zYGJZZJO66OulbfSqXSfbNtm:eVq9jnnEpf6zNt

Score
8/10
themidavmprotect

Malware Config

Targets

    • Target

      New Text Document.exe

    • Size

      4KB

    • MD5

      9ce4aaffc0cddb25b759e1ec9ab7102a

    • SHA1

      72e78508b65d61d4ae9620d180f4aa8dddb85399

    • SHA256

      8cc12ee9b2f09003ded9ca3e1846ed23b63325fe8d867e735a3388a9087bd87c

    • SHA512

      8f966188af4cb25368a6636f9a973e5c0aaf583bc89009c6604ed9a5e67451d7e417e0067b5c8a517835ab977355dde37c2c5495d7616aa7f82750a65dcab55f

    • SSDEEP

      48:6fWIcJ9lFEyU+zYGJZZJO66OulbfSqXSfbNtm:eVq9jnnEpf6zNt

    Score
    8/10
    themidavmprotect

    • Downloads MZ/PE file

    • .NET Reactor proctector

      Detects an executable protected by an unregistered version of Eziriz's .NET Reactor.

    • Themida packer

      Detects Themida, an advanced Windows software protection system.

      themida

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

      vmprotect

    • AutoIT Executable

      AutoIT scripts compiled to PE executables.

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks