Overview

overview

8

Static

static

7

7fe16efb09...b1.exe

windows7-x64

8

7fe16efb09...b1.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    7fe16efb0990ef8c3ad675d40a9ae800f2a8ea973631caa89bac18e73a1778b1

  • Size

    5.0MB

  • Sample

    240630-sscr8szdle

  • MD5

    dbfc5d7fc5da0a846a3f50a7b42c7b45

  • SHA1

    9d39d4649b8541d3784110d15765cf008e99f014

  • SHA256

    7fe16efb0990ef8c3ad675d40a9ae800f2a8ea973631caa89bac18e73a1778b1

  • SHA512

    1dcff70a8e33c1ccf03c81c6c7ad803030614ab65e0a700b256962d09028d9d73c90d48ab4fb80ee58d8fab2ee954774520b8bd22352c18c0cd82f72b4ba02ba

  • SSDEEP

    98304:GBT7X6fsUaOr9yx2ho9jAjksc7a5o0KSB4eoznxFVuy:YTL1Uaa+ioZpG0S4z

Score
8/10
upxvmprotect

Malware Config

Targets

    • Target

      7fe16efb0990ef8c3ad675d40a9ae800f2a8ea973631caa89bac18e73a1778b1

    • Size

      5.0MB

    • MD5

      dbfc5d7fc5da0a846a3f50a7b42c7b45

    • SHA1

      9d39d4649b8541d3784110d15765cf008e99f014

    • SHA256

      7fe16efb0990ef8c3ad675d40a9ae800f2a8ea973631caa89bac18e73a1778b1

    • SHA512

      1dcff70a8e33c1ccf03c81c6c7ad803030614ab65e0a700b256962d09028d9d73c90d48ab4fb80ee58d8fab2ee954774520b8bd22352c18c0cd82f72b4ba02ba

    • SSDEEP

      98304:GBT7X6fsUaOr9yx2ho9jAjksc7a5o0KSB4eoznxFVuy:YTL1Uaa+ioZpG0S4z

    Score
    8/10
    upxvmprotect

    • Drops file in Drivers directory

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

      vmprotect

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks