Overview

overview

7

Static

static

7

Win.exe

windows10-2004-x64

Resubmissions

22-05-2024 19:51

240522-ykz6fsed27 7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Win.exe

  • Size

    5.5MB

  • Sample

    240522-ykz6fsed27

  • MD5

    e1903d873efcb36658a21ae625822474

  • SHA1

    dcac6763e7f1bcb7150def4203301afb66109864

  • SHA256

    aec7db86a1812ea6153fca1bc43bf51fab9f85f04fb986e17bd3b1e86a10b8dd

  • SHA512

    79330127dbfbde554b7120dfba4ef5cd85253d29fd62a674a1ed65cc96ca2236e5c564bc8e2cc59ce1f7df049e63e1ef768a29194351150a0102e77a09940e8e

  • SSDEEP

    98304:9v7GhqKOcpJ+kZ2EgXwrboOiBxtgog30nGfYLkY3bOnSIWiFZ2HSTxs:9v7GhldpJ+kG4fiTtVHGfUbOnTWivZ

Score
7/10
vmprotect

Malware Config

Targets

    • Target

      Win.exe

    • Size

      5.5MB

    • MD5

      e1903d873efcb36658a21ae625822474

    • SHA1

      dcac6763e7f1bcb7150def4203301afb66109864

    • SHA256

      aec7db86a1812ea6153fca1bc43bf51fab9f85f04fb986e17bd3b1e86a10b8dd

    • SHA512

      79330127dbfbde554b7120dfba4ef5cd85253d29fd62a674a1ed65cc96ca2236e5c564bc8e2cc59ce1f7df049e63e1ef768a29194351150a0102e77a09940e8e

    • SSDEEP

      98304:9v7GhqKOcpJ+kZ2EgXwrboOiBxtgog30nGfYLkY3bOnSIWiFZ2HSTxs:9v7GhldpJ+kG4fiTtVHGfUbOnTWivZ

    Score
    7/10
    vmprotect

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

      vmprotect

    • Legitimate hosting services abused for malware hosting/C2

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks