207c4f9e62528d693f096220ad365f5124918efc7994c537c956f9a79bcbadd3 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

file.exe

windows7-x64

7

file.exe

windows10-2004-x64

7

Sharing

General

Target

file
Size

698KB
Sample

240130-ct9klaggaq
MD5

bf2a3e48b0ea897e1cb01f8e2d37a995
SHA1

4e7cd01f8126099d550e126ff1c44b9f60f79b70
SHA256

207c4f9e62528d693f096220ad365f5124918efc7994c537c956f9a79bcbadd3
SHA512

78769b0130eed100e2bb1d0794f371b0fa1286d0c644337bc2d9bbe24f6467fd89aa8acf92ac719cc3c045d57097665fe8f3f567f2d4297a7ee7968bbab58b91
SSDEEP

12288:mh1Fk70TnvjcDopmEUd4+rL4VZvvApKFuzWMfJoacb7hj30Cq7rc4p/2:Ak70TrcDopfE+wUFuzW3NFgdrJx2

Score

7^/10

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

file.exe

Resource

win7-20231215-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

file.exe

Resource

win10v2004-20231215-en

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Targets

- Target
  
  file
- Size
  
  698KB
- MD5
  
  bf2a3e48b0ea897e1cb01f8e2d37a995
- SHA1
  
  4e7cd01f8126099d550e126ff1c44b9f60f79b70
- SHA256
  
  207c4f9e62528d693f096220ad365f5124918efc7994c537c956f9a79bcbadd3
- SHA512
  
  78769b0130eed100e2bb1d0794f371b0fa1286d0c644337bc2d9bbe24f6467fd89aa8acf92ac719cc3c045d57097665fe8f3f567f2d4297a7ee7968bbab58b91
- SSDEEP
  
  12288:mh1Fk70TnvjcDopmEUd4+rL4VZvvApKFuzWMfJoacb7hj30Cq7rc4p/2:Ak70TrcDopfE+wUFuzW3NFgdrJx2
Score

7^/10
- .NET Reactor proctector
  Detects an executable protected by an unregistered version of Eziriz's .NET Reactor.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy