General
-
Target
48a4bfd3dd161dc15e15a447f38085b6529e79f35c0ff241ba5858c4aac103d4
-
Size
1.1MB
-
Sample
221127-rcw1hacf34
-
MD5
a11ed474e0bb2241b18441dfd55352b6
-
SHA1
8d6be791605277ae13c2f4bf6aa16ae98638464f
-
SHA256
48a4bfd3dd161dc15e15a447f38085b6529e79f35c0ff241ba5858c4aac103d4
-
SHA512
e4c31a7839f0835b8aba160bad77b287c582be2f5bc0a3e07d222cbb39531465c88c0ce5db7cfe000cdf4e724b381bb92c7f9a888ab1edfe74651cd590caa698
-
SSDEEP
24576:488FqvRKoPw8NEx4VmPmsDx7Gk+Reb0wW:48fRbE2VolvZW
Malware Config
Targets
-
-
Target
48a4bfd3dd161dc15e15a447f38085b6529e79f35c0ff241ba5858c4aac103d4
-
Size
1.1MB
-
MD5
a11ed474e0bb2241b18441dfd55352b6
-
SHA1
8d6be791605277ae13c2f4bf6aa16ae98638464f
-
SHA256
48a4bfd3dd161dc15e15a447f38085b6529e79f35c0ff241ba5858c4aac103d4
-
SHA512
e4c31a7839f0835b8aba160bad77b287c582be2f5bc0a3e07d222cbb39531465c88c0ce5db7cfe000cdf4e724b381bb92c7f9a888ab1edfe74651cd590caa698
-
SSDEEP
24576:488FqvRKoPw8NEx4VmPmsDx7Gk+Reb0wW:48fRbE2VolvZW
Score7/10-
Checks BIOS information in registry
BIOS information is often read in order to detect sandboxing environments.
-
Loads dropped DLL
-
Maps connected drives based on registry
Disk information is often read in order to detect sandboxing environments.
-
Suspicious use of SetThreadContext
-