Overview

overview

7

Static

static

7

eagle.exe

windows11-21h2-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    eagle.exe

  • Size

    5.7MB

  • Sample

    231222-z8sxqaddgq

  • MD5

    7a030147ac5649ea5772e4f3bafe6759

  • SHA1

    5e7ac16b3749fd06fe594ad67a376203bfd9e794

  • SHA256

    85c55d19c00d3924954d05477b6ed7083b1d70677b222f6d5c833edbd732a815

  • SHA512

    d477ba1863cfdc7e26756e10c78e3fb9f2eb9013055add6f1f4334c8007fd904a157968ff5e80613d7a6a8604aaca9a9d7a5c1e8e00e87ec71f70c2776bd47ee

  • SSDEEP

    98304:QWbpFq9+sQ+jDBhhkErWplu9vbGPiujpZuCCwzM4QEOICxUJsWsOhglRoi:VbpFS1DfhP4+v6PiujpbC4QEOKJPDyPo

Score
7/10
vmprotect

Malware Config

Targets

    • Target

      eagle.exe

    • Size

      5.7MB

    • MD5

      7a030147ac5649ea5772e4f3bafe6759

    • SHA1

      5e7ac16b3749fd06fe594ad67a376203bfd9e794

    • SHA256

      85c55d19c00d3924954d05477b6ed7083b1d70677b222f6d5c833edbd732a815

    • SHA512

      d477ba1863cfdc7e26756e10c78e3fb9f2eb9013055add6f1f4334c8007fd904a157968ff5e80613d7a6a8604aaca9a9d7a5c1e8e00e87ec71f70c2776bd47ee

    • SSDEEP

      98304:QWbpFq9+sQ+jDBhhkErWplu9vbGPiujpZuCCwzM4QEOICxUJsWsOhglRoi:VbpFS1DfhP4+v6PiujpbC4QEOKJPDyPo

    Score
    7/10
    vmprotect

    • Executes dropped EXE

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

      vmprotect

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks