General
-
Target
61458152c4215d24d3dd2b099a07916871d0ecc2dc3144106eb79e63182b2ae8.exe
-
Size
13.2MB
-
Sample
221130-wkdaksfb5v
-
MD5
0a5659701d99b9076e067606bf36e0b7
-
SHA1
b1dbd42d7d25c01e19716f6e18614a51fbcacd47
-
SHA256
61458152c4215d24d3dd2b099a07916871d0ecc2dc3144106eb79e63182b2ae8
-
SHA512
26c99fa962b533428404f4cc3f528412ea7d0cc2bcd1ba7f6854ef7a61803af0203e16e5a1b480a467daee86cee8222f36791293b97fd9aa75e56febbcb56d56
-
SSDEEP
393216:qEZVtQ0b8LgVDBA4M8+4gFw2XGRbDyRyQ:qEZVtQ0Qez9cApuRy
Malware Config
Targets
-
-
Target
61458152c4215d24d3dd2b099a07916871d0ecc2dc3144106eb79e63182b2ae8.exe
-
Size
13.2MB
-
MD5
0a5659701d99b9076e067606bf36e0b7
-
SHA1
b1dbd42d7d25c01e19716f6e18614a51fbcacd47
-
SHA256
61458152c4215d24d3dd2b099a07916871d0ecc2dc3144106eb79e63182b2ae8
-
SHA512
26c99fa962b533428404f4cc3f528412ea7d0cc2bcd1ba7f6854ef7a61803af0203e16e5a1b480a467daee86cee8222f36791293b97fd9aa75e56febbcb56d56
-
SSDEEP
393216:qEZVtQ0b8LgVDBA4M8+4gFw2XGRbDyRyQ:qEZVtQ0Qez9cApuRy
-
Identifies VirtualBox via ACPI registry values (likely anti-VM)
-
Checks BIOS information in registry
BIOS information is often read in order to detect sandboxing environments.
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-