General
-
Target
aafdc4c8d77073d3c47faf5cea3f465e6d84b351022c61f9f810e1054c7a15ff
-
Size
625KB
-
Sample
221107-1vc5sadffq
-
MD5
6d3139895f48eab3d60224d05cc4f506
-
SHA1
fa11946968bc0f93f6533b2ca6f51680e05fde6d
-
SHA256
aafdc4c8d77073d3c47faf5cea3f465e6d84b351022c61f9f810e1054c7a15ff
-
SHA512
1b1a148c2969fe125146f04d1fa6a1922422bfc33cf7665f60dc14f317fde1fe7b3ce012b68070c879c7fe2e479865bf4893eb0de351eddb3912b091e35135d2
-
SSDEEP
12288:VzabEPJqyfW++sndefAd0qwJr+uj6jJvHdlf0P496:VgEPJqgVdQAd0qakV0K
Malware Config
Targets
-
-
Target
aafdc4c8d77073d3c47faf5cea3f465e6d84b351022c61f9f810e1054c7a15ff
-
Size
625KB
-
MD5
6d3139895f48eab3d60224d05cc4f506
-
SHA1
fa11946968bc0f93f6533b2ca6f51680e05fde6d
-
SHA256
aafdc4c8d77073d3c47faf5cea3f465e6d84b351022c61f9f810e1054c7a15ff
-
SHA512
1b1a148c2969fe125146f04d1fa6a1922422bfc33cf7665f60dc14f317fde1fe7b3ce012b68070c879c7fe2e479865bf4893eb0de351eddb3912b091e35135d2
-
SSDEEP
12288:VzabEPJqyfW++sndefAd0qwJr+uj6jJvHdlf0P496:VgEPJqgVdQAd0qakV0K
Score10/10-
BetaBot
Beta Bot is a Trojan that infects computers and disables Antivirus.
-
Modifies firewall policy service
-
Sets file execution options in registry
-
Checks BIOS information in registry
BIOS information is often read in order to detect sandboxing environments.
-
Adds Run key to start application
-
Checks whether UAC is enabled
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-