6c02318ae65496c8b178affa6cce80a195fd5c4c9c46e8f0f93fcfa252ba49cb

Sharing

Copy URL

Twitter E-mail

General

Target

370cebe45ec3614bee18cc779b2171f7
Size

442KB
Sample

231231-p8m2csdhgj
MD5

370cebe45ec3614bee18cc779b2171f7
SHA1

65d9eab2aed032556249d8d0904e49bab59c612b
SHA256

6c02318ae65496c8b178affa6cce80a195fd5c4c9c46e8f0f93fcfa252ba49cb
SHA512

934e9a9b346c493906989ebc145f7d958cec4128f4a19b6e1a6c176210455b0c6c756779ae145b12a93860474d028eecf67572463e05d973f613ff7688a35e0a
SSDEEP

12288:YBt+XDRXajx82y9YgTznWjYI0gOKDhEvV33Pqq1nx:ukTRXajxyKeWYI04h23Pqq1nx

Score

7^/10

vmprotect

Malware Config

Targets

- Target
  
  DNFMulti.dat
- Size
  
  49KB
- MD5
  
  ab03992456dd23b6e098915348cbb22d
- SHA1
  
  44ebfe95d637c76fb2efc3bc26f30f1ee7496b10
- SHA256
  
  1af96c65f3dcce17c97c8728953369f0d774d37ade76b957e5eee9b1291c9b26
- SHA512
  
  c8a2fc97220694796aca2653dfb821c427168bc67604b0e35322059bc26fee501c9abf73e7a54d21ebd93d6369ebcee0b44abc636840dcaf236f01537b1617ea
- SSDEEP
  
  768:FyA53WRbyBaWdTk56JOlOS33/F69wGL7sv/X:Q4KyBT+56kw79wGA
Score

1^/10
behavioral1 behavioral2
- Target
  
  DNF双开同步免费版.exe
- Size
  
  127KB
- MD5
  
  fb16de4f8f490921e60e1cd2f277fdf1
- SHA1
  
  1234fb21a54028d93e0ca83d4ecc4e56a84f58df
- SHA256
  
  fcd5dc06eaa581191a0a949a7ab431d5c578f25df5a1ff0d00e8816eecbbb80e
- SHA512
  
  bb3ccd8953c8b8f47d8ea79bb70be7cf98836c9d06f9ec596b2525d06eb06e42979d6ec985e77d0de9024e5e83af1f6a22d8ff301dbd3f0dbcc32a314ba696a6
- SSDEEP
  
  1536:iMd+C8pJTsmVvB9k46riRtIOOFnToIfOdwhrv82mw+UTHhL7xf7/5:5+ppJ4m9bkziRnOtTBfgwNvHo85h7R
Score

1^/10
behavioral3 behavioral4
- Target
  
  ImeHook.dll
- Size
  
  16KB
- MD5
  
  deded28d23751c4aa242dc1a4536528f
- SHA1
  
  3de9f1d13bf371ae2a1a64ce3f7ffc68cdf227c9
- SHA256
  
  165886f070a708d72cf6bad5ca03aae4a866df5d2dbde33d28f6363e3667ecc7
- SHA512
  
  ed76c347feee85c812095fb2ed44a4be7d3a941e1d7b7acff883bb2f8f20fb79454479016cea276b0f163b22e75236eb9f8e808dad11f67b9be1ecacc149107b
- SSDEEP
  
  384:zqIiqiqTxtKyegtVsilJJur5Jsq8ILKOLLvYiDsssjVPa5:ZizqFtxeosQJ8r3sFkL7sv6
Score

3^/10
behavioral5 behavioral6
- Target
  
  ImeHook.ime
- Size
  
  17KB
- MD5
  
  927e34571447f7fd8a0722825065afc9
- SHA1
  
  9cf382cf0bf6330d10e391ac32172fc3be172e7d
- SHA256
  
  2e985d65f32d3918107a7b253aee42e211ae602b83689beb75cf771a89e07736
- SHA512
  
  9340b54f02ad7bd21b531036e99397a3300db7b9c7eadd29630298efaf906a99a4d63a93ba5a6919316bf4b86480b2291ae77e8249fc7b57e0a3c97023fffa92
- SSDEEP
  
  384:Vj0DebCk4b2igrcf18zlJmoGuO8Irq2lwmOLLvYiDsssjVnx:ubkfiqJm4h2lwfL7svx
Score

1^/10
behavioral7 behavioral8
- Target
  
  dnf_sync.dll
- Size
  
  233KB
- MD5
  
  78d364e60475c71f2ab69386c20d1bdf
- SHA1
  
  e05de572be0014f51437722922a59a45b99dad5a
- SHA256
  
  e550d88a95607f490df63e85cf2a3376ccea25ca78eb4f2cc17079414476ec6a
- SHA512
  
  efa45412360d9ee66e37955944569ffaec6e1013c92d7a245e822c42776b77834358be3c2ed5969eaa69c11cabafd231cea79e253a6a163a77669f0e87ff72aa
- SSDEEP
  
  3072:88ZPTYADIJgUWZd30BI56vhG4brlQG6Itg9:/PTYADIJ3WZd30eIvhG4b8
Score

1^/10
behavioral10 behavioral9
- Target
  
  temp7891.dat
- Size
  
  265KB
- MD5
  
  977047d8056727175987eefdfd8b2089
- SHA1
  
  26704c70f7f7cc9f5f328d36e2893a3bee9e1c77
- SHA256
  
  258699a2265e205a61df562424043f7f66fb192d695b5ae506a519e1ff3f458e
- SHA512
  
  f6a13b9e7ba6351a5ea28d160dead67a4aca99b95ecd1eacd666b3780182bbae13b761b451f4c87ac72ff5101fa3d19eae5694666ef3664ccb27e270426bb03f
- SSDEEP
  
  6144:S3FDUtUjbEbPdg6WdBIBbgmpLVfETmL3aQYny+:2FAebwu6AID3ET43aQn+
Score

7^/10

vmprotect
- VMProtect packed file
  Detects executables packed with VMProtect commercial packer.
  vmprotect
behavioral11 behavioral12

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Targets

VMProtect packed file

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12