General

  • Target

    2d527f76de19966b91bab174aa9e6e10

  • Size

    21.2MB

  • Sample

    231231-h9fv4shhh7

  • MD5

    2d527f76de19966b91bab174aa9e6e10

  • SHA1

    cdf2b99ee8d7abd5fe784d7b8c67baef90e1b331

  • SHA256

    d7bba6e2ae642686d2ba6417bcda304395fb089169a378f3207968eead1c2761

  • SHA512

    1fa29be747ee9e2c018633f143d51e44563d8e45924b7d2ebce19d84c9bd851b554c0f27c5ea0a9efe3b2c1894e1a07ca2878f411fb69520ec27f825ae4c17df

  • SSDEEP

    393216:tlHyJmD3Q6rmo5GswZPJLULBUQ3sQxJ0XI2XLGhiHfxd2zMOKyjY:vXDgBvJbLKB5D0Y2XQOfxdsM/y

Score
7/10

Malware Config

Targets

    • Target

      2d527f76de19966b91bab174aa9e6e10

    • Size

      21.2MB

    • MD5

      2d527f76de19966b91bab174aa9e6e10

    • SHA1

      cdf2b99ee8d7abd5fe784d7b8c67baef90e1b331

    • SHA256

      d7bba6e2ae642686d2ba6417bcda304395fb089169a378f3207968eead1c2761

    • SHA512

      1fa29be747ee9e2c018633f143d51e44563d8e45924b7d2ebce19d84c9bd851b554c0f27c5ea0a9efe3b2c1894e1a07ca2878f411fb69520ec27f825ae4c17df

    • SSDEEP

      393216:tlHyJmD3Q6rmo5GswZPJLULBUQ3sQxJ0XI2XLGhiHfxd2zMOKyjY:vXDgBvJbLKB5D0Y2XQOfxdsM/y

    Score
    7/10
    • Deletes itself

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

    • AutoIT Executable

      AutoIT scripts compiled to PE executables.

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Enterprise v15

Tasks