General
-
Target
2d410aa0625c9131dc8a4f5aad482d08923e24113417876f5e668bf5e131a308
-
Size
8.2MB
-
Sample
220708-tmj5ssbga5
-
MD5
6a13a49de05f1e9eba9c5bcbb726a7a7
-
SHA1
92c5e29a09a6c294df19d4f8f5398631de5c6a46
-
SHA256
2d410aa0625c9131dc8a4f5aad482d08923e24113417876f5e668bf5e131a308
-
SHA512
89a794c91463dd39682be9f8cbc65c54af0fc050eb19f5079095797300df789a8b4d6570ed3a47b810357690dc369ee869042a4398fc28f6d507a2b08a1eb515
Static task
static1
Behavioral task
behavioral1
Sample
2d410aa0625c9131dc8a4f5aad482d08923e24113417876f5e668bf5e131a308.exe
Resource
win7-20220414-en
Malware Config
Targets
-
-
Target
2d410aa0625c9131dc8a4f5aad482d08923e24113417876f5e668bf5e131a308
-
Size
8.2MB
-
MD5
6a13a49de05f1e9eba9c5bcbb726a7a7
-
SHA1
92c5e29a09a6c294df19d4f8f5398631de5c6a46
-
SHA256
2d410aa0625c9131dc8a4f5aad482d08923e24113417876f5e668bf5e131a308
-
SHA512
89a794c91463dd39682be9f8cbc65c54af0fc050eb19f5079095797300df789a8b4d6570ed3a47b810357690dc369ee869042a4398fc28f6d507a2b08a1eb515
-
Identifies VirtualBox via ACPI registry values (likely anti-VM)
-
Checks BIOS information in registry
BIOS information is often read in order to detect sandboxing environments.
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-