General
-
Target
eed690676deae97c23ed3f902c5acf949fd4cf87b0a1bf7c654e76ca061fcf54
-
Size
3.4MB
-
Sample
230328-atnxsaga63
-
MD5
a71ee4305fbdc00eb7f0a729ace1fcca
-
SHA1
3c289475766e60a261a2869480fc435a741f6eeb
-
SHA256
eed690676deae97c23ed3f902c5acf949fd4cf87b0a1bf7c654e76ca061fcf54
-
SHA512
eef66459135e8775c023e0d2f169b0249049e75fcb83c3d5c8ca1b61e5ec37cee19d429a38497e0da91ac2ab29843f6ef6dc60ad0bcd6a68a1997920e95b0656
-
SSDEEP
98304:VJuR21C/yIq/dhl/O4i/TksjdFwvhzjMSwRVq:V8D/yIqlhlW4i/QsnwZzjMSeVq
Static task
static1
Malware Config
Targets
-
-
Target
eed690676deae97c23ed3f902c5acf949fd4cf87b0a1bf7c654e76ca061fcf54
-
Size
3.4MB
-
MD5
a71ee4305fbdc00eb7f0a729ace1fcca
-
SHA1
3c289475766e60a261a2869480fc435a741f6eeb
-
SHA256
eed690676deae97c23ed3f902c5acf949fd4cf87b0a1bf7c654e76ca061fcf54
-
SHA512
eef66459135e8775c023e0d2f169b0249049e75fcb83c3d5c8ca1b61e5ec37cee19d429a38497e0da91ac2ab29843f6ef6dc60ad0bcd6a68a1997920e95b0656
-
SSDEEP
98304:VJuR21C/yIq/dhl/O4i/TksjdFwvhzjMSwRVq:V8D/yIqlhlW4i/QsnwZzjMSeVq
-
Identifies VirtualBox via ACPI registry values (likely anti-VM)
-
Checks BIOS information in registry
BIOS information is often read in order to detect sandboxing environments.
-
Executes dropped EXE
-
Modifies file permissions
-
Suspicious use of SetThreadContext
-