General
-
Target
542df6c6398bb88f514801773847057d2d492a52e2ea97836704f073c5a4b947
-
Size
1.8MB
-
Sample
221003-g4jt5scfeq
-
MD5
2f3d9af858d7fcf8cd6cd2f2739ea8cb
-
SHA1
bcce478094cdcea3cc31d460a4381524113a87d5
-
SHA256
542df6c6398bb88f514801773847057d2d492a52e2ea97836704f073c5a4b947
-
SHA512
626ac19c5192b30c41475bed1faaa8600db6b9c1312c93cdb6536d474d07ee3c760053b8ebd643752e2359873dc5aeeb954f92f9df64b64e69bed9b7bfbc91ad
-
SSDEEP
49152:AiSzCD+K95aLs7zeqLTVtXtHFIDP8EehiM8qZA:AiSzCD+K95aUeqFtXtHwEEehig
Static task
static1
Malware Config
Targets
-
-
Target
542df6c6398bb88f514801773847057d2d492a52e2ea97836704f073c5a4b947
-
Size
1.8MB
-
MD5
2f3d9af858d7fcf8cd6cd2f2739ea8cb
-
SHA1
bcce478094cdcea3cc31d460a4381524113a87d5
-
SHA256
542df6c6398bb88f514801773847057d2d492a52e2ea97836704f073c5a4b947
-
SHA512
626ac19c5192b30c41475bed1faaa8600db6b9c1312c93cdb6536d474d07ee3c760053b8ebd643752e2359873dc5aeeb954f92f9df64b64e69bed9b7bfbc91ad
-
SSDEEP
49152:AiSzCD+K95aLs7zeqLTVtXtHFIDP8EehiM8qZA:AiSzCD+K95aUeqFtXtHwEEehig
-
Identifies VirtualBox via ACPI registry values (likely anti-VM)
-
Executes dropped EXE
-
Checks BIOS information in registry
BIOS information is often read in order to detect sandboxing environments.
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-