General
-
Target
c399a85eb4a58dda5ab2e16483be2357.bin
-
Size
5.2MB
-
Sample
231211-dkv7aabchj
-
MD5
c399a85eb4a58dda5ab2e16483be2357
-
SHA1
f80ee2d5d5d68803e773113778121a87b56007b7
-
SHA256
c6f3d124c8679771ca65f0a03c5995da466eed2a2f707a7ea5b47aeadc5a1903
-
SHA512
ea6333833654e19a5733ca8811fa3beed6ac44653d55dd763aa19f40518287a4a79dfb052d7f484a5708592d04f41c7f6eb19b4632cda06ce902b87df607a7b4
-
SSDEEP
98304:cvRIzi9OycbX1bFY8xboccA3DO4G/hzwhq5dyku69RQZO:cvt9OdRbFqjUNhqdzu69RQZO
Behavioral task
behavioral1
Sample
c399a85eb4a58dda5ab2e16483be2357.exe
Resource
win7-20231130-en
Malware Config
Targets
-
-
Target
c399a85eb4a58dda5ab2e16483be2357.bin
-
Size
5.2MB
-
MD5
c399a85eb4a58dda5ab2e16483be2357
-
SHA1
f80ee2d5d5d68803e773113778121a87b56007b7
-
SHA256
c6f3d124c8679771ca65f0a03c5995da466eed2a2f707a7ea5b47aeadc5a1903
-
SHA512
ea6333833654e19a5733ca8811fa3beed6ac44653d55dd763aa19f40518287a4a79dfb052d7f484a5708592d04f41c7f6eb19b4632cda06ce902b87df607a7b4
-
SSDEEP
98304:cvRIzi9OycbX1bFY8xboccA3DO4G/hzwhq5dyku69RQZO:cvt9OdRbFqjUNhqdzu69RQZO
-
Identifies VirtualBox via ACPI registry values (likely anti-VM)
-
Looks for VirtualBox Guest Additions in registry
-
Checks BIOS information in registry
BIOS information is often read in order to detect sandboxing environments.
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-