General
-
Target
ff64ee1bbb95a9d275100a7a4d7d63055042edeb669204252ae67d512c02b195
-
Size
3.4MB
-
Sample
230327-1k6pcahd6s
-
MD5
8da43b24d47f8a124dcde056d3ee3d1f
-
SHA1
e078de76e5ab886d253c9d98b4f46a21bce3b7f3
-
SHA256
ff64ee1bbb95a9d275100a7a4d7d63055042edeb669204252ae67d512c02b195
-
SHA512
c2a67f1eedfe18fc44993e9f70e679ca89bcde281e5a6cac1025c03d9ad5f094dc2ca08f25ccf360dd30597fc31db6455051e3afa70b8ad8d50fa36ccc39a1cd
-
SSDEEP
98304:9JuR21C/yIq/dhl/O4i/TksjdFwvhzjMSwRVq:98D/yIqlhlW4i/QsnwZzjMSeVq
Static task
static1
Malware Config
Targets
-
-
Target
ff64ee1bbb95a9d275100a7a4d7d63055042edeb669204252ae67d512c02b195
-
Size
3.4MB
-
MD5
8da43b24d47f8a124dcde056d3ee3d1f
-
SHA1
e078de76e5ab886d253c9d98b4f46a21bce3b7f3
-
SHA256
ff64ee1bbb95a9d275100a7a4d7d63055042edeb669204252ae67d512c02b195
-
SHA512
c2a67f1eedfe18fc44993e9f70e679ca89bcde281e5a6cac1025c03d9ad5f094dc2ca08f25ccf360dd30597fc31db6455051e3afa70b8ad8d50fa36ccc39a1cd
-
SSDEEP
98304:9JuR21C/yIq/dhl/O4i/TksjdFwvhzjMSwRVq:98D/yIqlhlW4i/QsnwZzjMSeVq
-
Identifies VirtualBox via ACPI registry values (likely anti-VM)
-
Checks BIOS information in registry
BIOS information is often read in order to detect sandboxing environments.
-
Executes dropped EXE
-
Modifies file permissions
-
Suspicious use of SetThreadContext
-