4284e92a11c0a4d4d537e8fedbd5d2e834bd36f1a65f8bb6d7c30e72f4a8eede | Triage

Submit
Reports

Overview

overview

7

Static

static

7

4284e92a11...de.exe

windows7-x64

7

4284e92a11...de.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

Target

4284e92a11c0a4d4d537e8fedbd5d2e834bd36f1a65f8bb6d7c30e72f4a8eede
Size

2.8MB
Sample

240808-mc6sgsscrj
MD5

b997b91517485e2a00b7115f03332b54
SHA1

a8a999481fec418db2904ea8b294de5a2c36c2c2
SHA256

4284e92a11c0a4d4d537e8fedbd5d2e834bd36f1a65f8bb6d7c30e72f4a8eede
SHA512

d55b041358ba31c0a4f1a228b14da3bd3cca10acd496390bedb3a2d2481270a512e4220c5281dd6837b00b3677208c81a86ed82f0e6ec2d9fc8678879d416d77
SSDEEP

24576:fNlaW5n274tWa9spyN1pTG05RwbLR1bDJbKkKF/eMNPjAlAp:fSW5wpyNXG1Z39KFeMmlI

Score

7^/10

discovery vmprotect

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

4284e92a11c0a4d4d537e8fedbd5d2e834bd36f1a65f8bb6d7c30e72f4a8eede.exe

Resource

win7-20240708-en

discovery vmprotect

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

4284e92a11c0a4d4d537e8fedbd5d2e834bd36f1a65f8bb6d7c30e72f4a8eede.exe

Resource

win10v2004-20240802-en

discovery vmprotect

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  4284e92a11c0a4d4d537e8fedbd5d2e834bd36f1a65f8bb6d7c30e72f4a8eede
- Size
  
  2.8MB
- MD5
  
  b997b91517485e2a00b7115f03332b54
- SHA1
  
  a8a999481fec418db2904ea8b294de5a2c36c2c2
- SHA256
  
  4284e92a11c0a4d4d537e8fedbd5d2e834bd36f1a65f8bb6d7c30e72f4a8eede
- SHA512
  
  d55b041358ba31c0a4f1a228b14da3bd3cca10acd496390bedb3a2d2481270a512e4220c5281dd6837b00b3677208c81a86ed82f0e6ec2d9fc8678879d416d77
- SSDEEP
  
  24576:fNlaW5n274tWa9spyN1pTG05RwbLR1bDJbKkKF/eMNPjAlAp:fSW5wpyNXG1Z39KFeMmlI
Score

7^/10

discovery vmprotect
- Unexpected DNS network traffic destination
  Network traffic to other servers than the configured DNS servers was detected on the DNS port.
- VMProtect packed file
  Detects executables packed with VMProtect commercial packer.
  vmprotect
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryvmprotect

behavioral2

discoveryvmprotect

© 2018-2025

Terms | Privacy