Overview

overview

7

Static

static

7

bdb54adf7c...27.exe

windows7-x64

7

bdb54adf7c...27.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    104s
  • max time network
    143s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20250314-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20250314-enlocale:en-usos:windows10-2004-x64system
  • submitted
    25/03/2025, 11:24

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    bdb54adf7ca2d9a3324535ed550ccfc2aaab40a7a8aadb3e39e6a3d5c1a7a327.exe

  • Size

    6.0MB

  • MD5

    eb00f77b713b8efb76db09f8f39e739e

  • SHA1

    a6b8a9ce58d7bce07b9a376d2e1206376d5477f7

  • SHA256

    bdb54adf7ca2d9a3324535ed550ccfc2aaab40a7a8aadb3e39e6a3d5c1a7a327

  • SHA512

    0b7e2ba9c4e16a1762605718d941e501fcda77da7d31a781e11edab768305b6beed24816cd9d1f4ed3f6a981011f40650d0f22a819b712a986389f49cae617c7

  • SSDEEP

    98304:6WE1bstdrvpccUUDtzBzwpZTJY5fMPItCAw5X3VMhb+vYc+ZXLx0i7gSdiKX:6l1bstNhhUUDxiTJY5fl4jZq1+Qc+Zbh

Score
7/10
vmprotect

Malware Config

Signatures

  • VMProtect packed file 2 IoCs

    Detects executables packed with VMProtect commercial packer.

    vmprotect
  • Suspicious behavior: EnumeratesProcesses 4 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\bdb54adf7ca2d9a3324535ed550ccfc2aaab40a7a8aadb3e39e6a3d5c1a7a327.exe
    "C:\Users\Admin\AppData\Local\Temp\bdb54adf7ca2d9a3324535ed550ccfc2aaab40a7a8aadb3e39e6a3d5c1a7a327.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    PID:2308

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2308-0-0x0000000140114000-0x00000001404D5000-memory.dmp

    Filesize

    3.8MB

    Download

  • memory/2308-3-0x00007FFD83DA0000-0x00007FFD83DA2000-memory.dmp

    Filesize

    8KB

    Download

  • memory/2308-5-0x00007FFD822C0000-0x00007FFD822C2000-memory.dmp

    Filesize

    8KB

    Download

  • memory/2308-4-0x00007FFD83DB0000-0x00007FFD83DB2000-memory.dmp

    Filesize

    8KB

    Download

  • memory/2308-2-0x00007FFD846E0000-0x00007FFD846E2000-memory.dmp

    Filesize

    8KB

    Download

  • memory/2308-1-0x00007FFD846D0000-0x00007FFD846D2000-memory.dmp

    Filesize

    8KB

    Download

  • memory/2308-6-0x00007FFD822D0000-0x00007FFD822D2000-memory.dmp

    Filesize

    8KB

    Download

  • memory/2308-7-0x00007FFD846F0000-0x00007FFD846F2000-memory.dmp

    Filesize

    8KB

    Download

  • memory/2308-12-0x0000000140000000-0x0000000140AD5000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/2308-13-0x00000000029C0000-0x0000000002A43000-memory.dmp

    Filesize

    524KB

    Download

  • memory/2308-14-0x0000000140114000-0x00000001404D5000-memory.dmp

    Filesize

    3.8MB

    Download

  • memory/2308-15-0x0000000140000000-0x0000000140AD5000-memory.dmp

    Filesize

    10.8MB

    Download