67227e462f48aeaeeef1cde49d3ea4f6dd45ac0bb6bd06f47b5f181defb41212 | Triage

Submit
Reports

Overview

overview

7

Static

static

7

CidiaCheats.com.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

Target

CidiaCheats.com.exe
Size

5.6MB
Sample

240223-vy135aea48
MD5

299df21df027c1ebeb0c40c830cfd1f0
SHA1

a74ebec32324daa54499db3e62e66064c4e18122
SHA256

67227e462f48aeaeeef1cde49d3ea4f6dd45ac0bb6bd06f47b5f181defb41212
SHA512

212ae79994c2b4dacb7b3553a118a768c1bac830a3e20a636c92e8d50be9bead22c7bfd4b2fa34075fe69fdd536f14f6aa3edf99283877773221534030e81daf
SSDEEP

98304:KQlH+vyy3BDcPxVQlgZNt9BEb+/D/py+ltRBxgABZk04Gatyy:zHsyyRD+Qkt8+/DxyqKqd4NtB

Score

7^/10

vmprotect

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

CidiaCheats.com.exe

Resource

win10v2004-20240221-en

windows10-2004-x64

13 signatures

600 seconds

Malware Config

Targets

- Target
  
  CidiaCheats.com.exe
- Size
  
  5.6MB
- MD5
  
  299df21df027c1ebeb0c40c830cfd1f0
- SHA1
  
  a74ebec32324daa54499db3e62e66064c4e18122
- SHA256
  
  67227e462f48aeaeeef1cde49d3ea4f6dd45ac0bb6bd06f47b5f181defb41212
- SHA512
  
  212ae79994c2b4dacb7b3553a118a768c1bac830a3e20a636c92e8d50be9bead22c7bfd4b2fa34075fe69fdd536f14f6aa3edf99283877773221534030e81daf
- SSDEEP
  
  98304:KQlH+vyy3BDcPxVQlgZNt9BEb+/D/py+ltRBxgABZk04Gatyy:zHsyyRD+Qkt8+/DxyqKqd4NtB
Score

7^/10

vmprotect
- VMProtect packed file
  Detects executables packed with VMProtect commercial packer.
  vmprotect
- Legitimate hosting services abused for malware hosting/C2
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy