General

  • Target

    ea9291ec5dcede37e8db3932209616a69282838f5aba55530807576bacf44e4d

  • Size

    14.2MB

  • Sample

    240626-rrttpaycrc

  • MD5

    196aaa131dfbabcc868e062bb69c9575

  • SHA1

    3f47551486273a7d9d361d1f9059bd2baf731ea9

  • SHA256

    ea9291ec5dcede37e8db3932209616a69282838f5aba55530807576bacf44e4d

  • SHA512

    f5f8f688fbeab1cda373262275ce7f8f037df6c5b811659edffa1b50bb977386b15ce2b59662c1c1cdec1d54127a0350394f33b90423234dfc0e34411f1b3fe1

  • SSDEEP

    393216:Yh05bK2h8841FymtBq1GgV0uNl6YE97xSt5AMx:YhGgjBBq5V0uW9xu5AM

Score
7/10

Malware Config

Targets

    • Target

      ea9291ec5dcede37e8db3932209616a69282838f5aba55530807576bacf44e4d

    • Size

      14.2MB

    • MD5

      196aaa131dfbabcc868e062bb69c9575

    • SHA1

      3f47551486273a7d9d361d1f9059bd2baf731ea9

    • SHA256

      ea9291ec5dcede37e8db3932209616a69282838f5aba55530807576bacf44e4d

    • SHA512

      f5f8f688fbeab1cda373262275ce7f8f037df6c5b811659edffa1b50bb977386b15ce2b59662c1c1cdec1d54127a0350394f33b90423234dfc0e34411f1b3fe1

    • SSDEEP

      393216:Yh05bK2h8841FymtBq1GgV0uNl6YE97xSt5AMx:YhGgjBBq5V0uW9xu5AM

    Score
    7/10
    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Matrix

Tasks