General

  • Target

    mimikatz-vmp.exe

  • Size

    5.8MB

  • MD5

    5d570daf6dc6db5253b789192d6f0c5e

  • SHA1

    bdc8506df8aca91ae9f646edc6e9f8aeb82b02f8

  • SHA256

    87a4adcc8c5c10bdf57e4b5ec13b2d2567437034e908982ed276aa4a62a01eb0

  • SHA512

    8e77eb19ce9c7267625b54e024a4b71af6bab712180cf7d6ebf7de4adf8e2bae098bc74609ae67d135a426950109e01913fba336ec90aca971eb4a6171b3aeae

  • SSDEEP

    98304:5s4aXzeiPlTQ3PmTqlzdsZl5TGiPFsV7bvDdpEPnBg+kJM5:5lOImGFd0THPSDDdsSj

Score
7/10

Malware Config

Signatures

  • VMProtect packed file 1 IoCs

    Detects executables packed with VMProtect commercial packer.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • mimikatz-vmp.exe
    .exe windows:5 windows x64 arch:x64

    f9e4e52991070df47f71115af20a8652


    Headers

    Imports

    Sections