Overview

overview

7

Static

static

7

2024-08-10...ia.exe

windows7-x64

7

2024-08-10...ia.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-08-10_e2d879e81353b1a28d446535f7b5b106_mafia

  • Size

    3.6MB

  • Sample

    240810-cyynwssark

  • MD5

    e2d879e81353b1a28d446535f7b5b106

  • SHA1

    c22f6e07bca9b4ed4333ef9762fff122b89061cf

  • SHA256

    056ae344f015b7e315b4ee8f723fd8d67bef7c5da0dba98060c466305ac38ccb

  • SHA512

    cb66083c0cff2dc774bd684146c3479e6078391b778d625b6b71007f475d46dce796b034cc0f70f8781617e927360c7a23767638edc5c44d48a2dc4773c00600

  • SSDEEP

    49152:gKyf6jPInN5QZuTtS0rQMYOQ+q8CEYSW5wpLX:ggjPCWsM0r1QnbSR

Score
7/10
discoveryvmprotect

Malware Config

Targets

    • Target

      2024-08-10_e2d879e81353b1a28d446535f7b5b106_mafia

    • Size

      3.6MB

    • MD5

      e2d879e81353b1a28d446535f7b5b106

    • SHA1

      c22f6e07bca9b4ed4333ef9762fff122b89061cf

    • SHA256

      056ae344f015b7e315b4ee8f723fd8d67bef7c5da0dba98060c466305ac38ccb

    • SHA512

      cb66083c0cff2dc774bd684146c3479e6078391b778d625b6b71007f475d46dce796b034cc0f70f8781617e927360c7a23767638edc5c44d48a2dc4773c00600

    • SSDEEP

      49152:gKyf6jPInN5QZuTtS0rQMYOQ+q8CEYSW5wpLX:ggjPCWsM0r1QnbSR

    Score
    7/10
    discoveryvmprotect

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

      vmprotect
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks