General
-
Target
1d49c5cc618392e58460b89f5cb12038
-
Size
1.7MB
-
Sample
231225-axajkabghk
-
MD5
1d49c5cc618392e58460b89f5cb12038
-
SHA1
fcc1af1a11f50d93f7500493b3fe19084afa7db2
-
SHA256
22888b18b66d99463b3b96a478f73e0cad82f495717f8ba509c3c58177474f95
-
SHA512
e265a47b7aafcead8af9b43c5975b6e2ba62f95098afc1b80a3a4b1eb2e3bddb6c8980741608bab2ff6ed451dc2d26e76d9199f0b3fdc32020dcd63e394832a5
-
SSDEEP
24576:TJI7H8wlhEodBPziRQkl5m95xNybvdj7FoGp6Bcash2uskeGadbj8ymx+ifPkSuz:SPxH0Mpkdj7KBcc7hjZmHUQlmCo
Malware Config
Targets
-
-
Target
1d49c5cc618392e58460b89f5cb12038
-
Size
1.7MB
-
MD5
1d49c5cc618392e58460b89f5cb12038
-
SHA1
fcc1af1a11f50d93f7500493b3fe19084afa7db2
-
SHA256
22888b18b66d99463b3b96a478f73e0cad82f495717f8ba509c3c58177474f95
-
SHA512
e265a47b7aafcead8af9b43c5975b6e2ba62f95098afc1b80a3a4b1eb2e3bddb6c8980741608bab2ff6ed451dc2d26e76d9199f0b3fdc32020dcd63e394832a5
-
SSDEEP
24576:TJI7H8wlhEodBPziRQkl5m95xNybvdj7FoGp6Bcash2uskeGadbj8ymx+ifPkSuz:SPxH0Mpkdj7KBcc7hjZmHUQlmCo
Score9/10-
Identifies VirtualBox via ACPI registry values (likely anti-VM)
-
Looks for VirtualBox Guest Additions in registry
-
Checks BIOS information in registry
BIOS information is often read in order to detect sandboxing environments.
-
Loads dropped DLL
-
Maps connected drives based on registry
Disk information is often read in order to detect sandboxing environments.
-