General

  • Target

    5942accde84039e47a47827e46ece7b15986d1887833279d1ecaa31071b579c2

  • Size

    6.8MB

  • Sample

    240626-fhb2qsyepn

  • MD5

    80bbfe66f5aed088172ef4082568c2e1

  • SHA1

    cee3103ece29ddd17d5a566e20c980a563bc62ea

  • SHA256

    5942accde84039e47a47827e46ece7b15986d1887833279d1ecaa31071b579c2

  • SHA512

    e8704e05c372bbc2e251a4e69d14e235a5f8551650852b7d45971849f22df05a25803b7c841d55ed38516a992c9bf0ac8ba866610599d12c30dc17c1d6786c2a

  • SSDEEP

    196608:iox1vjaUOqrUSAwzLm/1G2q0Ixw4RyuHMl:3djaU49G2q8Fl

Score
8/10

Malware Config

Targets

    • Target

      5942accde84039e47a47827e46ece7b15986d1887833279d1ecaa31071b579c2

    • Size

      6.8MB

    • MD5

      80bbfe66f5aed088172ef4082568c2e1

    • SHA1

      cee3103ece29ddd17d5a566e20c980a563bc62ea

    • SHA256

      5942accde84039e47a47827e46ece7b15986d1887833279d1ecaa31071b579c2

    • SHA512

      e8704e05c372bbc2e251a4e69d14e235a5f8551650852b7d45971849f22df05a25803b7c841d55ed38516a992c9bf0ac8ba866610599d12c30dc17c1d6786c2a

    • SSDEEP

      196608:iox1vjaUOqrUSAwzLm/1G2q0Ixw4RyuHMl:3djaU49G2q8Fl

    Score
    8/10
    • Blocklisted process makes network request

    • Loads dropped DLL

    • Modifies file permissions

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks