Overview

overview

7

Static

static

7

6fcb1b6f38...7e.exe

windows7-x64

7

6fcb1b6f38...7e.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    6fcb1b6f388cc40aaafda3752265aa0420db5f75ef6aa206605fde2cd5c8907e

  • Size

    6.4MB

  • Sample

    240808-vzprgswfpq

  • MD5

    d8f7945db625db5ce0bf404f04db463d

  • SHA1

    d08762fc939b300c8e9b299f17cbc18733b55cde

  • SHA256

    6fcb1b6f388cc40aaafda3752265aa0420db5f75ef6aa206605fde2cd5c8907e

  • SHA512

    ded469fab6a995a69b91b606e021b19ebacab64644584b04cb4fb04544fda06f10889b8f6490671270c11c3df7af79eaa9ba3a11f928529703ccccded234e052

  • SSDEEP

    196608:oyKZk9GirfF3V+efTK2Br9ZLQpcpPRdn:oYx0eewDQpcF

Score
7/10
discoveryvmprotect

Malware Config

Targets

    • Target

      6fcb1b6f388cc40aaafda3752265aa0420db5f75ef6aa206605fde2cd5c8907e

    • Size

      6.4MB

    • MD5

      d8f7945db625db5ce0bf404f04db463d

    • SHA1

      d08762fc939b300c8e9b299f17cbc18733b55cde

    • SHA256

      6fcb1b6f388cc40aaafda3752265aa0420db5f75ef6aa206605fde2cd5c8907e

    • SHA512

      ded469fab6a995a69b91b606e021b19ebacab64644584b04cb4fb04544fda06f10889b8f6490671270c11c3df7af79eaa9ba3a11f928529703ccccded234e052

    • SSDEEP

      196608:oyKZk9GirfF3V+efTK2Br9ZLQpcpPRdn:oYx0eewDQpcF

    Score
    7/10
    discoveryvmprotect

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

      vmprotect

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks