General
-
Target
640ec1f3d053f145abbc471ce754a3d0b0f1a9c1f5b5258c2210ae768f1b7439
-
Size
828KB
-
Sample
221126-es6hnabc23
-
MD5
0b397d32bed3b670e484f93919fa9303
-
SHA1
561a6f86087ff0b77e452dec57a31310a71012ae
-
SHA256
640ec1f3d053f145abbc471ce754a3d0b0f1a9c1f5b5258c2210ae768f1b7439
-
SHA512
415cba124b32f7bfab65b83a453123c427f7bea16b1e3b31079d1cebffd7a6e7aff9fd3cd72ac24d6a50ad7b52234b38251808caf8997df526718e7510d30453
-
SSDEEP
24576:fDFhwFzsQNLAr5bj/b4FKHrJ841gAQguqMwPJ:bFhwFzPBYb02y4SA5M0
Static task
static1
Behavioral task
behavioral1
Sample
640ec1f3d053f145abbc471ce754a3d0b0f1a9c1f5b5258c2210ae768f1b7439.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
640ec1f3d053f145abbc471ce754a3d0b0f1a9c1f5b5258c2210ae768f1b7439.exe
Resource
win10v2004-20220812-en
Malware Config
Targets
-
-
Target
640ec1f3d053f145abbc471ce754a3d0b0f1a9c1f5b5258c2210ae768f1b7439
-
Size
828KB
-
MD5
0b397d32bed3b670e484f93919fa9303
-
SHA1
561a6f86087ff0b77e452dec57a31310a71012ae
-
SHA256
640ec1f3d053f145abbc471ce754a3d0b0f1a9c1f5b5258c2210ae768f1b7439
-
SHA512
415cba124b32f7bfab65b83a453123c427f7bea16b1e3b31079d1cebffd7a6e7aff9fd3cd72ac24d6a50ad7b52234b38251808caf8997df526718e7510d30453
-
SSDEEP
24576:fDFhwFzsQNLAr5bj/b4FKHrJ841gAQguqMwPJ:bFhwFzPBYb02y4SA5M0
Score7/10-
Checks BIOS information in registry
BIOS information is often read in order to detect sandboxing environments.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Maps connected drives based on registry
Disk information is often read in order to detect sandboxing environments.
-
Suspicious use of SetThreadContext
-