Analysis
-
max time kernel
153s -
max time network
160s -
platform
windows10-2004_x64 -
resource
win10v2004-20230220-en -
resource tags
arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system -
submitted
21-02-2023 20:04
Static task
static1
Behavioral task
behavioral1
Sample
ChromiumUpdater.exe
Resource
win7-20230220-en
2 signatures
150 seconds
General
-
Target
ChromiumUpdater.exe
-
Size
800.0MB
-
MD5
08cdb070611396e11631d07d8edffa5e
-
SHA1
f335b698268881904bbe2eceb6e24354de2a08ad
-
SHA256
1eb1fd9face0a477e82e40f2e18cd9d305202d69f2830ecbdfe8299ba8d391b5
-
SHA512
6637484723ac59f09abbdc747657aa0d7271a54812a44166bbb70017de6a75c3a0568f6202df6d296ae8c94cd7715950c9976905b9072fbb66828c53ea0d3c7d
-
SSDEEP
49152:mtnc2azvgRILo/tSXD+xMCuBoYdo0U5LJi0UaccLLK/nz9UlT5+07+d/VJRnpHJy:YWzo+0/0XiMCCzU5LJdoMC9w407+VR9
Malware Config
Extracted
Family
aurora
C2
77.91.124.12:8081
Signatures
-
Checks BIOS information in registry 2 TTPs 2 IoCs
BIOS information is often read in order to detect sandboxing environments.
Processes:
ChromiumUpdater.exedescription ioc Process Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\SystemBiosVersion ChromiumUpdater.exe Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\VideoBiosVersion ChromiumUpdater.exe