Overview

overview

7

Static

static

7

cb5e3b56f8...0N.exe

windows7-x64

7

cb5e3b56f8...0N.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    cb5e3b56f8724fd8efcfc57633fb2980N.exe

  • Size

    4.5MB

  • Sample

    240903-zlk9csxfrh

  • MD5

    cb5e3b56f8724fd8efcfc57633fb2980

  • SHA1

    99a4a87d94a1e7760ee1ca5039e6b5a79d342010

  • SHA256

    d82e82550673b3a0bc627c4d3ba6c2ebb9b686eda161ae5d26f95a3720d8c8ec

  • SHA512

    2fdfedd48e4e76e4c7b9d5f9a2a1a28da505d6e894f98023f2823faf97c937b189ac26410732bd62891069d87723515edcb55bcf83b5725997bd4f369593219b

  • SSDEEP

    98304:W3AuxziZNLsJvb0qKMbDgYlARHHMt01wjIm4rJwaUI0sRUUckyoXII:uTzoJAbP3Dg1wErRUjscoX

Score
7/10
discoveryvmprotect

Malware Config

Targets

    • Target

      cb5e3b56f8724fd8efcfc57633fb2980N.exe

    • Size

      4.5MB

    • MD5

      cb5e3b56f8724fd8efcfc57633fb2980

    • SHA1

      99a4a87d94a1e7760ee1ca5039e6b5a79d342010

    • SHA256

      d82e82550673b3a0bc627c4d3ba6c2ebb9b686eda161ae5d26f95a3720d8c8ec

    • SHA512

      2fdfedd48e4e76e4c7b9d5f9a2a1a28da505d6e894f98023f2823faf97c937b189ac26410732bd62891069d87723515edcb55bcf83b5725997bd4f369593219b

    • SSDEEP

      98304:W3AuxziZNLsJvb0qKMbDgYlARHHMt01wjIm4rJwaUI0sRUUckyoXII:uTzoJAbP3Dg1wErRUjscoX

    Score
    7/10
    discoveryvmprotect

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

      vmprotect

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks