General

  • Target

    ahk.vmp.exe

  • Size

    6.1MB

  • Sample

    240626-wkdaksycpq

  • MD5

    4d6c95c9191f22ae69df8c36b5e83484

  • SHA1

    6703628bda4beaeedc09946b3c38cba9f68d2d07

  • SHA256

    fa1aeb8484a3d7db1abbcd336ee44785140926c06a9ced6ef91817121885b7e4

  • SHA512

    aa3cb4a677f34daa02a0a2c8e76a429f254a04e9e6a83a07582f229d001b9a387735b836d85127fb3a50425f84e10637d1e13e4a0453313bc8c7be32e3e142d1

  • SSDEEP

    98304:6lXP/oi4kaxb+O39VJVABLECjeLZuSjaWj4EiuTtkkuA+2tHtj5yR:Mno9/bJ39/mBYCjMagNXzlrVy

Score
7/10

Malware Config

Targets

    • Target

      ahk.vmp.exe

    • Size

      6.1MB

    • MD5

      4d6c95c9191f22ae69df8c36b5e83484

    • SHA1

      6703628bda4beaeedc09946b3c38cba9f68d2d07

    • SHA256

      fa1aeb8484a3d7db1abbcd336ee44785140926c06a9ced6ef91817121885b7e4

    • SHA512

      aa3cb4a677f34daa02a0a2c8e76a429f254a04e9e6a83a07582f229d001b9a387735b836d85127fb3a50425f84e10637d1e13e4a0453313bc8c7be32e3e142d1

    • SSDEEP

      98304:6lXP/oi4kaxb+O39VJVABLECjeLZuSjaWj4EiuTtkkuA+2tHtj5yR:Mno9/bJ39/mBYCjMagNXzlrVy

    Score
    7/10
    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Matrix

Tasks