General

  • Target

    Ransomware.vmp.exe

  • Size

    252KB

  • MD5

    35bd28d630c3b95895d0c4fd26dadac4

  • SHA1

    2ced98bf235827b5df9ccd1efdf53421ee8145c4

  • SHA256

    dcd4a8b706602afb718590093f186baa1667fdbbe4edb713933bfb6edf8b94d5

  • SHA512

    f13aa2a63173de12ab722aea8014e056f6256371aa6556c16eb2ed82178b6348ef42485ad228e3239f3c70afd3f831dbe00a30714a904ee607b55b7674a9246f

  • SSDEEP

    6144:f3Z1lsbkaM0YDYheLxcSIjixEgu9kG/F/KZ:PNsbkaVc8yguuvF/

Score
7/10

Malware Config

Signatures

  • VMProtect packed file 1 IoCs

    Detects executables packed with VMProtect commercial packer.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • Ransomware.vmp.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections