General
-
Target
d14e33bd84ffade39be39008082b658476d2ecb7917b8eab39db40a0bf481ab6
-
Size
1.8MB
-
Sample
220925-fbyl6adcf6
-
MD5
84d4f5883f0420bd2f1318847fdf6dc4
-
SHA1
ba0fc02e7ebcefa8b916450498dcf303d075a6d7
-
SHA256
d14e33bd84ffade39be39008082b658476d2ecb7917b8eab39db40a0bf481ab6
-
SHA512
bdac8de434232a73fdf602b1dee4aeb647e83539b112911425ab246aeab2f81182fb9c3a7ad53b470dfc232c72a2e449455a386f60272287bb6127310351c2a0
-
SSDEEP
49152:AiSzCD+K95aLs7zeqLTVtXtHFIDP8EehiM8qZA:AiSzCD+K95aUeqFtXtHwEEehig
Static task
static1
Malware Config
Targets
-
-
Target
d14e33bd84ffade39be39008082b658476d2ecb7917b8eab39db40a0bf481ab6
-
Size
1.8MB
-
MD5
84d4f5883f0420bd2f1318847fdf6dc4
-
SHA1
ba0fc02e7ebcefa8b916450498dcf303d075a6d7
-
SHA256
d14e33bd84ffade39be39008082b658476d2ecb7917b8eab39db40a0bf481ab6
-
SHA512
bdac8de434232a73fdf602b1dee4aeb647e83539b112911425ab246aeab2f81182fb9c3a7ad53b470dfc232c72a2e449455a386f60272287bb6127310351c2a0
-
SSDEEP
49152:AiSzCD+K95aLs7zeqLTVtXtHFIDP8EehiM8qZA:AiSzCD+K95aUeqFtXtHwEEehig
-
Identifies VirtualBox via ACPI registry values (likely anti-VM)
-
Executes dropped EXE
-
Checks BIOS information in registry
BIOS information is often read in order to detect sandboxing environments.
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-