Overview

overview

7

Static

static

7

vapev4.exe

windows7-x64

7

vapev4.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    vapev4.exe

  • Size

    5.2MB

  • Sample

    250328-sgg8kszjz8

  • MD5

    6b9b6812b8e6d61602667f0c992666e1

  • SHA1

    37bfd6870570bf5a505c2f04eb2b9fea38a5b04b

  • SHA256

    deb41cc8958cc50c40cf80e9a4fab93d8386f5434ba72eda040f3e18b5b3820c

  • SHA512

    d76b11b978350ab440dfa26c66e1e1c21323f26e757ee6753d44961fc5fe6a64662f7c48a68c7e0b2090467fba71fc9345477aa726521cb75afb854c79a9cf6b

  • SSDEEP

    98304:ym9tIN6GN8Uqs9jveeV30sLVDTJNJ3PijqD/HZc/8gcEnniAF:ymru6GNa2jfSwJNxij0/HZQ8gBnF

Score
7/10
discoveryvmprotect

Malware Config

Targets

    • Target

      vapev4.exe

    • Size

      5.2MB

    • MD5

      6b9b6812b8e6d61602667f0c992666e1

    • SHA1

      37bfd6870570bf5a505c2f04eb2b9fea38a5b04b

    • SHA256

      deb41cc8958cc50c40cf80e9a4fab93d8386f5434ba72eda040f3e18b5b3820c

    • SHA512

      d76b11b978350ab440dfa26c66e1e1c21323f26e757ee6753d44961fc5fe6a64662f7c48a68c7e0b2090467fba71fc9345477aa726521cb75afb854c79a9cf6b

    • SSDEEP

      98304:ym9tIN6GN8Uqs9jveeV30sLVDTJNJ3PijqD/HZc/8gcEnniAF:ymru6GNa2jfSwJNxij0/HZQ8gBnF

    Score
    7/10
    discoveryvmprotect

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

      vmprotect

    • Legitimate hosting services abused for malware hosting/C2

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks