91881d3ba8eeb6cab2bd15b670617e10ac01bae42b45aa30da4d60b75e3a99c4 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

5

Static

static

1

VMProtect.exe

windows7-x64

5

VMProtect.exe

windows10-2004-x64

5

Sharing

General

Target

VMProtect.exe
Size

35.1MB
Sample

240906-bfb7haxeql
MD5

42bc64a5b81dde66989bbdd4bb460b9f
SHA1

a5a16491477e0ace4ee44a354a15ba63e55375e8
SHA256

91881d3ba8eeb6cab2bd15b670617e10ac01bae42b45aa30da4d60b75e3a99c4
SHA512

d8f772cf829e7245b6fa53b32bef68e414505bbe8b3f23b646053828abfd42797d4be5eb2c9b209f212ebc8536a1bff3a37726fe74ae4607bef96577a408f2dc
SSDEEP

786432:js1qgvftkNGCDvdJrObjfho/qNn4VJHF0yHQcLEP7qAuHG:aqcf6fvEo/qJ4VJHxnPm

Score

5^/10

Static task

static1

Behavioral task

behavioral1

Sample

VMProtect.exe

Resource

win7-20240903-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

VMProtect.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  VMProtect.exe
- Size
  
  35.1MB
- MD5
  
  42bc64a5b81dde66989bbdd4bb460b9f
- SHA1
  
  a5a16491477e0ace4ee44a354a15ba63e55375e8
- SHA256
  
  91881d3ba8eeb6cab2bd15b670617e10ac01bae42b45aa30da4d60b75e3a99c4
- SHA512
  
  d8f772cf829e7245b6fa53b32bef68e414505bbe8b3f23b646053828abfd42797d4be5eb2c9b209f212ebc8536a1bff3a37726fe74ae4607bef96577a408f2dc
- SSDEEP
  
  786432:js1qgvftkNGCDvdJrObjfho/qNn4VJHF0yHQcLEP7qAuHG:aqcf6fvEo/qJ4VJHxnPm
Score

5^/10
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy