General
-
Target
c9d7f95adcd4195193fe82baad69c5216056d457f236a042a684bd660f163f55
-
Size
3.4MB
-
Sample
230328-htx5fshe39
-
MD5
2356d35bf9af11b8fd5fb01d4dc8dc95
-
SHA1
b43b5551b8bed0b40ebe7c30aabc769eea6ee473
-
SHA256
c9d7f95adcd4195193fe82baad69c5216056d457f236a042a684bd660f163f55
-
SHA512
007ef62d3cc7a0faa514d9773896019984cf1e9dc65286597583c8350b857e78078028cc71bc7b6b9e0ecb10e7c05ae72b6d8094b0e506312a215c731ac4badc
-
SSDEEP
98304:CJuR21C/yIq/dhl/O4i/TksjdFwvhzjMSwRV6:C8D/yIqlhlW4i/QsnwZzjMSeV6
Static task
static1
Malware Config
Targets
-
-
Target
c9d7f95adcd4195193fe82baad69c5216056d457f236a042a684bd660f163f55
-
Size
3.4MB
-
MD5
2356d35bf9af11b8fd5fb01d4dc8dc95
-
SHA1
b43b5551b8bed0b40ebe7c30aabc769eea6ee473
-
SHA256
c9d7f95adcd4195193fe82baad69c5216056d457f236a042a684bd660f163f55
-
SHA512
007ef62d3cc7a0faa514d9773896019984cf1e9dc65286597583c8350b857e78078028cc71bc7b6b9e0ecb10e7c05ae72b6d8094b0e506312a215c731ac4badc
-
SSDEEP
98304:CJuR21C/yIq/dhl/O4i/TksjdFwvhzjMSwRV6:C8D/yIqlhlW4i/QsnwZzjMSeV6
-
Identifies VirtualBox via ACPI registry values (likely anti-VM)
-
Checks BIOS information in registry
BIOS information is often read in order to detect sandboxing environments.
-
Executes dropped EXE
-
Modifies file permissions
-
Suspicious use of SetThreadContext
-