Overview

overview

7

Static

static

7

5f6a558c63...4f.exe

windows7-x64

7

5f6a558c63...4f.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5f6a558c6398d1de290aa6892213d04f

  • Size

    408KB

  • Sample

    231226-j9a6asghgk

  • MD5

    5f6a558c6398d1de290aa6892213d04f

  • SHA1

    3c9f1409f2d2aea60a9ee1f7199c0113a09bac82

  • SHA256

    e79589c5c136b067c340849b435d530f8023a3d9f7fb56e1bc883ef4cfaab894

  • SHA512

    cf0fcff17d543522e2cdd471ec987575114e2f3756215c0599750ced7c291cfd3b59880aa5ac2a74723f1c686ad9becd4222c4675438535098c7a965a35b5027

  • SSDEEP

    12288:atjWnDi2x4Z7H0N+Vtx3OuzuOQNB9Lwd+:atjWnDLA0NSx3OUuO0qg

Score
7/10
vmprotect

Malware Config

Targets

    • Target

      5f6a558c6398d1de290aa6892213d04f

    • Size

      408KB

    • MD5

      5f6a558c6398d1de290aa6892213d04f

    • SHA1

      3c9f1409f2d2aea60a9ee1f7199c0113a09bac82

    • SHA256

      e79589c5c136b067c340849b435d530f8023a3d9f7fb56e1bc883ef4cfaab894

    • SHA512

      cf0fcff17d543522e2cdd471ec987575114e2f3756215c0599750ced7c291cfd3b59880aa5ac2a74723f1c686ad9becd4222c4675438535098c7a965a35b5027

    • SSDEEP

      12288:atjWnDi2x4Z7H0N+Vtx3OuzuOQNB9Lwd+:atjWnDLA0NSx3OUuO0qg

    Score
    7/10
    vmprotect

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

      vmprotect

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks