General
-
Target
Filmora2022.rar
-
Size
7.4MB
-
Sample
230131-tzvr3aha93
-
MD5
f112cc11f23a9495eba9f62a25b34c8a
-
SHA1
3b9719b20701ecb646c1f3b8b1825c5386aa903c
-
SHA256
2483a1b12399f4595e508bbffe727ce82f355c80d746553e6232fa7ac4e01687
-
SHA512
a8d0098241965d57f859aad5eea8c081cffb4a81712faeb2825633c7308510b442d67db42f28206dfa6524a695f95cc3b36a6dc619e4af5bac05e1833c9239e9
-
SSDEEP
196608:eZ0dhdzMH1e5YymThGI1TKN2xsiz2GzvSRTZh:eZ0dhdye5vihGIdKr3GzKRD
Static task
static1
Behavioral task
behavioral1
Sample
Filmora2022.rar
Resource
win7-20221111-en
Malware Config
Extracted
vidar
2.2
408
https://t.me/litlebey
https://steamcommunity.com/profiles/76561199472399815
-
profile_id
408
Targets
-
-
Target
Filmora2022.rar
-
Size
7.4MB
-
MD5
f112cc11f23a9495eba9f62a25b34c8a
-
SHA1
3b9719b20701ecb646c1f3b8b1825c5386aa903c
-
SHA256
2483a1b12399f4595e508bbffe727ce82f355c80d746553e6232fa7ac4e01687
-
SHA512
a8d0098241965d57f859aad5eea8c081cffb4a81712faeb2825633c7308510b442d67db42f28206dfa6524a695f95cc3b36a6dc619e4af5bac05e1833c9239e9
-
SSDEEP
196608:eZ0dhdzMH1e5YymThGI1TKN2xsiz2GzvSRTZh:eZ0dhdye5vihGIdKr3GzKRD
-
Identifies VirtualBox via ACPI registry values (likely anti-VM)
-
Executes dropped EXE
-
Checks BIOS information in registry
BIOS information is often read in order to detect sandboxing environments.
-
Suspicious use of SetThreadContext
-