ef1257a19e8ecfec326a5ff4abcf9d6723659565ee206f7266cfaf01a4c821c4 | Triage

Submit
Reports

Overview

overview

Static

static

ef1257a19e...c4.dll

windows7-x64

9

ef1257a19e...c4.dll

windows10-2004-x64

9

Sharing

General

Target

ef1257a19e8ecfec326a5ff4abcf9d6723659565ee206f7266cfaf01a4c821c4
Size

1.7MB
Sample

240312-d4blzshb77
MD5

282ae25e51d0d24ec73d5e9b71645fd6
SHA1

ff72efc608a4362382e0ee9b8067266d44a4aaa2
SHA256

ef1257a19e8ecfec326a5ff4abcf9d6723659565ee206f7266cfaf01a4c821c4
SHA512

9d7d78fde3f581828edbeab80b111a77fa367781aab559f4a10c3d82455a9696ff4872708d583150c1cc47d5f904c4c605696a7cffd2ad7b6267d7d490958a01
SSDEEP

24576:ZKdLvL3+J8vhkmN9lBqN2ZYgQNwJZcoRs4kU/AnYfj2iaVy:Cz88plnDJZXQczZ3IIj2ia

Score

10^/10

vmprotect

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

ef1257a19e8ecfec326a5ff4abcf9d6723659565ee206f7266cfaf01a4c821c4.dll

Resource

win7-20231129-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

ef1257a19e8ecfec326a5ff4abcf9d6723659565ee206f7266cfaf01a4c821c4.dll

Resource

win10v2004-20240226-en

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  ef1257a19e8ecfec326a5ff4abcf9d6723659565ee206f7266cfaf01a4c821c4
- Size
  
  1.7MB
- MD5
  
  282ae25e51d0d24ec73d5e9b71645fd6
- SHA1
  
  ff72efc608a4362382e0ee9b8067266d44a4aaa2
- SHA256
  
  ef1257a19e8ecfec326a5ff4abcf9d6723659565ee206f7266cfaf01a4c821c4
- SHA512
  
  9d7d78fde3f581828edbeab80b111a77fa367781aab559f4a10c3d82455a9696ff4872708d583150c1cc47d5f904c4c605696a7cffd2ad7b6267d7d490958a01
- SSDEEP
  
  24576:ZKdLvL3+J8vhkmN9lBqN2ZYgQNwJZcoRs4kU/AnYfj2iaVy:Cz88plnDJZXQczZ3IIj2ia
Score

9^/10

vmprotect
- Detects executables packed with VMProtect.
- VMProtect packed file
  Detects executables packed with VMProtect commercial packer.
  vmprotect
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy