General
-
Target
608a2abe556eaf9f65965e9ad04814938d7e429fc8d7ab5b98404c90c5a3c93c
-
Size
7.2MB
-
Sample
220808-em7hrschdp
-
MD5
b1c7d7949c6e3f68c02b94c1cab7ed09
-
SHA1
6202b072c9254c0b23cd17f1eab0ada76c05c47e
-
SHA256
608a2abe556eaf9f65965e9ad04814938d7e429fc8d7ab5b98404c90c5a3c93c
-
SHA512
2f6adbc2f5346abdf8c05b309253eff2ade1e1e924554743e69e7ca1f4e48955c4cc6db61f55729bab42ecbfd1d48573cec6b92b0ad4504a03c4f11ceaa647d8
Behavioral task
behavioral1
Sample
608a2abe556eaf9f65965e9ad04814938d7e429fc8d7ab5b98404c90c5a3c93c.exe
Resource
win7-20220715-en
Malware Config
Targets
-
-
Target
608a2abe556eaf9f65965e9ad04814938d7e429fc8d7ab5b98404c90c5a3c93c
-
Size
7.2MB
-
MD5
b1c7d7949c6e3f68c02b94c1cab7ed09
-
SHA1
6202b072c9254c0b23cd17f1eab0ada76c05c47e
-
SHA256
608a2abe556eaf9f65965e9ad04814938d7e429fc8d7ab5b98404c90c5a3c93c
-
SHA512
2f6adbc2f5346abdf8c05b309253eff2ade1e1e924554743e69e7ca1f4e48955c4cc6db61f55729bab42ecbfd1d48573cec6b92b0ad4504a03c4f11ceaa647d8
-
Identifies VirtualBox via ACPI registry values (likely anti-VM)
-
Checks BIOS information in registry
BIOS information is often read in order to detect sandboxing environments.
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-