General

  • Target

    usermode.exe

  • Size

    5.4MB

  • MD5

    fb4bf2834546449c2ce7593c9b152995

  • SHA1

    962351902ca2b130d5652e6b42bc7c5fdf8ab4d4

  • SHA256

    f63734e8c099081fb6f7386aaa960667e297a0b323d7b583d1a2cfcd974353dd

  • SHA512

    275d02f4871707f7b57b348f0a882abf98b3746bd7c5da80180d6b4a0cf67415ae0d3992b4b410235054f57c0a5c81216fd4a572d0a8e8059d2fe154fa72d2a8

  • SSDEEP

    98304:ApRYuEKLOdpy9owo8DQZpvSnHHQoCZ06i8ATTkPb7UzVC2wx7ETxZ:AsWOdpy9oX8oZti8UTmb7f2wx7El

Score
7/10

Malware Config

Signatures

  • VMProtect packed file 1 IoCs

    Detects executables packed with VMProtect commercial packer.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • usermode.exe
    .exe windows:6 windows x64 arch:x64

    617d4fded42f9a3506ee21cf00d0b451


    Headers

    Imports

    Sections