Overview

overview

8

Static

static

1

VirtualBox...in.exe

windows7-x64

8

VirtualBox...in.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    VirtualBox-7.0.8-156879-Win.exe

  • Size

    105.5MB

  • Sample

    230630-r4wttade47

  • MD5

    5277068968032af616e7e4cc86f1d3c2

  • SHA1

    6e3e2912d2131bb249f416088ee49088ab841580

  • SHA256

    8a2da26ca69c1ddfc50fb65ee4fa8f269e692302046df4e2f48948775ba6339a

  • SHA512

    ba119b87c57e952af7c53dc865892b9e85b378a5103cd2441543e7332a2a558a1034a1e428dfd2f25d55ef0faac63536038716d5417ab8296bf87dde3c9c29cd

  • SSDEEP

    1572864:+J0Hde2HeK8T7jrBNaaJB3NT3usiH1faAQL87++FRRbkdCIm3wR7nCfcX78144V7:+Jd8eK8X1TJBRg1faAXFf4sIm3KCfX

Score
8/10
persistence

Malware Config

Targets

    • Target

      VirtualBox-7.0.8-156879-Win.exe

    • Size

      105.5MB

    • MD5

      5277068968032af616e7e4cc86f1d3c2

    • SHA1

      6e3e2912d2131bb249f416088ee49088ab841580

    • SHA256

      8a2da26ca69c1ddfc50fb65ee4fa8f269e692302046df4e2f48948775ba6339a

    • SHA512

      ba119b87c57e952af7c53dc865892b9e85b378a5103cd2441543e7332a2a558a1034a1e428dfd2f25d55ef0faac63536038716d5417ab8296bf87dde3c9c29cd

    • SSDEEP

      1572864:+J0Hde2HeK8T7jrBNaaJB3NT3usiH1faAQL87++FRRbkdCIm3wR7nCfcX78144V7:+Jd8eK8X1TJBRg1faAXFf4sIm3KCfX

    Score
    8/10
    persistence

    • Blocklisted process makes network request

    • Drops file in Drivers directory

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks