General
-
Target
07c87d036ab5dca9947c20b7eb7d15c9434bb9f125ac564986b33f6c9204ab47
-
Size
2.4MB
-
Sample
220521-x4d7nachb6
-
MD5
e1aa32400b398acc3f13500e2913266a
-
SHA1
f31d5f086ff20a6dcd0bdb6bae572cae647b8034
-
SHA256
07c87d036ab5dca9947c20b7eb7d15c9434bb9f125ac564986b33f6c9204ab47
-
SHA512
9d241236e953e80259ad4600d7a69ecc1c18deb89e0ac27e368eed73e75182b5fdb10aaacb9922a8db2021935a5e111e8676db1efc9cbb8a1b1d118556f21919
Static task
static1
Behavioral task
behavioral1
Sample
07c87d036ab5dca9947c20b7eb7d15c9434bb9f125ac564986b33f6c9204ab47.dll
Resource
win7-20220414-en
Malware Config
Targets
-
-
Target
07c87d036ab5dca9947c20b7eb7d15c9434bb9f125ac564986b33f6c9204ab47
-
Size
2.4MB
-
MD5
e1aa32400b398acc3f13500e2913266a
-
SHA1
f31d5f086ff20a6dcd0bdb6bae572cae647b8034
-
SHA256
07c87d036ab5dca9947c20b7eb7d15c9434bb9f125ac564986b33f6c9204ab47
-
SHA512
9d241236e953e80259ad4600d7a69ecc1c18deb89e0ac27e368eed73e75182b5fdb10aaacb9922a8db2021935a5e111e8676db1efc9cbb8a1b1d118556f21919
-
Identifies VirtualBox via ACPI registry values (likely anti-VM)
-
Checks BIOS information in registry
BIOS information is often read in order to detect sandboxing environments.
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-