General
-
Target
Altruistic.exe
-
Size
15.6MB
-
Sample
230206-zwevbsbb4z
-
MD5
d55c66739f6d75663a27c83c099324ba
-
SHA1
6021c7f371b9a35fd7328cc1fb66bf63017f19a5
-
SHA256
da7e1aa7f0dfcc5fe0ff6f5efe2736f4afdaa85ba7488f1c9790296a6001858a
-
SHA512
e9f946642e8a86daedd954196b388f0af23c1443f1495d0cecbf18b61f421f43727051f52a0d79ba1089f872ab5b23e7a3e37803b97019ef5988c7c8f75b3cb4
-
SSDEEP
393216:C5YHQKQPMQUEN/XAqFTAtnNCz4xfA2xXtnEHeN7A:9wZEzEN4qF4naCdXlE+NA
Static task
static1
Malware Config
Targets
-
-
Target
Altruistic.exe
-
Size
15.6MB
-
MD5
d55c66739f6d75663a27c83c099324ba
-
SHA1
6021c7f371b9a35fd7328cc1fb66bf63017f19a5
-
SHA256
da7e1aa7f0dfcc5fe0ff6f5efe2736f4afdaa85ba7488f1c9790296a6001858a
-
SHA512
e9f946642e8a86daedd954196b388f0af23c1443f1495d0cecbf18b61f421f43727051f52a0d79ba1089f872ab5b23e7a3e37803b97019ef5988c7c8f75b3cb4
-
SSDEEP
393216:C5YHQKQPMQUEN/XAqFTAtnNCz4xfA2xXtnEHeN7A:9wZEzEN4qF4naCdXlE+NA
-
Identifies VirtualBox via ACPI registry values (likely anti-VM)
-
Checks BIOS information in registry
BIOS information is often read in order to detect sandboxing environments.
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-