General
-
Target
9d349fddce74d7221a1c83dee99d1f5716ccb46e427da4fa5fa4dc3aa42cc3b8
-
Size
1.8MB
-
Sample
220925-jbbdeafahj
-
MD5
8fb2922b82167c275bbeb54ec76c4f52
-
SHA1
f995cb09ca125146f6551b64b37a4f417f4f45f3
-
SHA256
9d349fddce74d7221a1c83dee99d1f5716ccb46e427da4fa5fa4dc3aa42cc3b8
-
SHA512
c1b3f5af5c20df1659c14e58cba19a74fb27bc132dd3e60e31d59205875793c9a09ab25fff469f71549cf266a10960c38853a0209e9000f1423b40f79e81580b
-
SSDEEP
49152:AiSzCD+K95aLs7zeqLTVtXtHFIDP8EehiM8qZA:AiSzCD+K95aUeqFtXtHwEEehig
Static task
static1
Malware Config
Targets
-
-
Target
9d349fddce74d7221a1c83dee99d1f5716ccb46e427da4fa5fa4dc3aa42cc3b8
-
Size
1.8MB
-
MD5
8fb2922b82167c275bbeb54ec76c4f52
-
SHA1
f995cb09ca125146f6551b64b37a4f417f4f45f3
-
SHA256
9d349fddce74d7221a1c83dee99d1f5716ccb46e427da4fa5fa4dc3aa42cc3b8
-
SHA512
c1b3f5af5c20df1659c14e58cba19a74fb27bc132dd3e60e31d59205875793c9a09ab25fff469f71549cf266a10960c38853a0209e9000f1423b40f79e81580b
-
SSDEEP
49152:AiSzCD+K95aLs7zeqLTVtXtHFIDP8EehiM8qZA:AiSzCD+K95aUeqFtXtHwEEehig
-
Identifies VirtualBox via ACPI registry values (likely anti-VM)
-
Executes dropped EXE
-
Checks BIOS information in registry
BIOS information is often read in order to detect sandboxing environments.
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-