General
-
Target
5296918f6e013d42944753fd861c70a98a2e0f4b4d7e185476a2ca4a39e1fece
-
Size
3.4MB
-
Sample
230328-r53zhsdc5z
-
MD5
38c636770f828ebd326a0e48177e866b
-
SHA1
249cbfae9bfc635172b2dda4a3b576deb5808991
-
SHA256
5296918f6e013d42944753fd861c70a98a2e0f4b4d7e185476a2ca4a39e1fece
-
SHA512
67b4e2ad18055f7e1d6d09fc89f54bb0a27b9d009c83ffb107bce540e75f203eb2d2bb60e9d5557b09da0e1586d5b6a75c182d2950f1bfc16e852e8bfbcd8886
-
SSDEEP
98304:1UwOIEK84WQsykAeYYkAeYUaMImg8C0Qu2JuR21C/yIq/dhl/O4i/TksjdFwvhzq:1UwOIEK84WQsykAeYYkAeYUaMImg8C01
Static task
static1
Malware Config
Targets
-
-
Target
5296918f6e013d42944753fd861c70a98a2e0f4b4d7e185476a2ca4a39e1fece
-
Size
3.4MB
-
MD5
38c636770f828ebd326a0e48177e866b
-
SHA1
249cbfae9bfc635172b2dda4a3b576deb5808991
-
SHA256
5296918f6e013d42944753fd861c70a98a2e0f4b4d7e185476a2ca4a39e1fece
-
SHA512
67b4e2ad18055f7e1d6d09fc89f54bb0a27b9d009c83ffb107bce540e75f203eb2d2bb60e9d5557b09da0e1586d5b6a75c182d2950f1bfc16e852e8bfbcd8886
-
SSDEEP
98304:1UwOIEK84WQsykAeYYkAeYUaMImg8C0Qu2JuR21C/yIq/dhl/O4i/TksjdFwvhzq:1UwOIEK84WQsykAeYYkAeYUaMImg8C01
-
Identifies VirtualBox via ACPI registry values (likely anti-VM)
-
Checks BIOS information in registry
BIOS information is often read in order to detect sandboxing environments.
-
Executes dropped EXE
-
Modifies file permissions
-
Suspicious use of SetThreadContext
-