General
-
Target
5b910e6b25e5bb779895622cf3c89e6f3598fdfa747b7a231b7b9217028d6e00
-
Size
3.4MB
-
Sample
230328-pqvcqacf4y
-
MD5
1465eab98d108862217ca290abb7710d
-
SHA1
78b62934e2506e0b05abcbb05aa6a0a12e094c1e
-
SHA256
5b910e6b25e5bb779895622cf3c89e6f3598fdfa747b7a231b7b9217028d6e00
-
SHA512
0beb38b8adb1dfa51a268b988d1965fab5a824108913857a6faca15afe86f91507596be5f7d47d206a5b96ca87052b0010033a8123848a1ebf1f6ffa12308d3a
-
SSDEEP
98304:yUwOIEK84WQsykAeYXkAeYUaMImg8C0QuVJuR21C/yIq/dhl/O4i/TksjdFwvhzh:yUwOIEK84WQsykAeYXkAeYUaMImg8C07
Static task
static1
Malware Config
Targets
-
-
Target
5b910e6b25e5bb779895622cf3c89e6f3598fdfa747b7a231b7b9217028d6e00
-
Size
3.4MB
-
MD5
1465eab98d108862217ca290abb7710d
-
SHA1
78b62934e2506e0b05abcbb05aa6a0a12e094c1e
-
SHA256
5b910e6b25e5bb779895622cf3c89e6f3598fdfa747b7a231b7b9217028d6e00
-
SHA512
0beb38b8adb1dfa51a268b988d1965fab5a824108913857a6faca15afe86f91507596be5f7d47d206a5b96ca87052b0010033a8123848a1ebf1f6ffa12308d3a
-
SSDEEP
98304:yUwOIEK84WQsykAeYXkAeYUaMImg8C0QuVJuR21C/yIq/dhl/O4i/TksjdFwvhzh:yUwOIEK84WQsykAeYXkAeYUaMImg8C07
-
Identifies VirtualBox via ACPI registry values (likely anti-VM)
-
Checks BIOS information in registry
BIOS information is often read in order to detect sandboxing environments.
-
Executes dropped EXE
-
Modifies file permissions
-
Suspicious use of SetThreadContext
-