Overview

overview

10

Static

static

10

4a7791351d...8f.exe

windows7-x64

9

4a7791351d...8f.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    4a7791351d597338387d751dbe800a8adbc9ecf6c37842b9e324604dd9e3d48f

  • Size

    3.7MB

  • Sample

    240420-1nltcabd41

  • MD5

    0603d95b045b8f2dde176bbb5f0db19b

  • SHA1

    e3cb28e81ed1a50345fa5f8e9cc763ae614e859d

  • SHA256

    4a7791351d597338387d751dbe800a8adbc9ecf6c37842b9e324604dd9e3d48f

  • SHA512

    af62fa46ea2b1ff73f1aafd4060a9fad39a8c784bf6862d92c2db2001dba8be532fc8e94ed723d1f6595bf699831e52caf79c439bf08f6bdaed65e9c06c8590f

  • SSDEEP

    98304:saxhT3TGYWVcAmJx9ulhF10jnBwzykKlZyGm4fea0JGr6IYu9:saxFCY6mJih30jnOzykKlEGm04J0t

Score
10/10
persistence

Malware Config

Targets

    • Target

      4a7791351d597338387d751dbe800a8adbc9ecf6c37842b9e324604dd9e3d48f

    • Size

      3.7MB

    • MD5

      0603d95b045b8f2dde176bbb5f0db19b

    • SHA1

      e3cb28e81ed1a50345fa5f8e9cc763ae614e859d

    • SHA256

      4a7791351d597338387d751dbe800a8adbc9ecf6c37842b9e324604dd9e3d48f

    • SHA512

      af62fa46ea2b1ff73f1aafd4060a9fad39a8c784bf6862d92c2db2001dba8be532fc8e94ed723d1f6595bf699831e52caf79c439bf08f6bdaed65e9c06c8590f

    • SSDEEP

      98304:saxhT3TGYWVcAmJx9ulhF10jnBwzykKlZyGm4fea0JGr6IYu9:saxFCY6mJih30jnOzykKlEGm04J0t

    Score
    9/10
    persistence

    • Detects executables packed with VMProtect.

    • Modifies AppInit DLL entries

      persistence

    • Executes dropped EXE

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks