General
-
Target
75fcf1139fa407de17ff3e76e87183723806eb175367eb06a336971bae224d0f
-
Size
3.4MB
-
Sample
230328-m1x59aae72
-
MD5
96268b5c8fed476ee080034b0ef18212
-
SHA1
8b666d09e9b68742c9c00ba14a546295e6c826cb
-
SHA256
75fcf1139fa407de17ff3e76e87183723806eb175367eb06a336971bae224d0f
-
SHA512
4d48f03107aaba4b2e2b2cfcfeca6a39cd218535c2faf600220dff1628271785266312f1a7afe4af0b2d810ce707a4ad223b0bd8d01503d4f378bb2db8e1df8d
-
SSDEEP
98304:eUwOIEK84WQsykAeYIkAeYUaMImg8C0Qu2JuR21C/yIq/dhl/O4i/TksjdFwvhz6:eUwOIEK84WQsykAeYIkAeYUaMImg8C0t
Static task
static1
Malware Config
Targets
-
-
Target
75fcf1139fa407de17ff3e76e87183723806eb175367eb06a336971bae224d0f
-
Size
3.4MB
-
MD5
96268b5c8fed476ee080034b0ef18212
-
SHA1
8b666d09e9b68742c9c00ba14a546295e6c826cb
-
SHA256
75fcf1139fa407de17ff3e76e87183723806eb175367eb06a336971bae224d0f
-
SHA512
4d48f03107aaba4b2e2b2cfcfeca6a39cd218535c2faf600220dff1628271785266312f1a7afe4af0b2d810ce707a4ad223b0bd8d01503d4f378bb2db8e1df8d
-
SSDEEP
98304:eUwOIEK84WQsykAeYIkAeYUaMImg8C0Qu2JuR21C/yIq/dhl/O4i/TksjdFwvhz6:eUwOIEK84WQsykAeYIkAeYUaMImg8C0t
-
Identifies VirtualBox via ACPI registry values (likely anti-VM)
-
Checks BIOS information in registry
BIOS information is often read in order to detect sandboxing environments.
-
Executes dropped EXE
-
Modifies file permissions
-
Suspicious use of SetThreadContext
-