General
-
Target
90a6f2ca4cf0a3223e880203c88e0fc6
-
Size
1.7MB
-
Sample
240205-bmmxksfca9
-
MD5
90a6f2ca4cf0a3223e880203c88e0fc6
-
SHA1
3445062e06ca4bcdb53cdc72c492ac30fba2dd7f
-
SHA256
cf6c5942752c0ac771cfceadc7723f265e61e8b6799082e4248a20d819a3cfab
-
SHA512
91881ed73386db3f1ebfafd79735aca8db35283c5e8c9a53be6f48a30b5cad8fb620373e4a535b01cda379085edaa94ecf46b4e29d14aff80c38a06323be9e23
-
SSDEEP
49152:IfZ+oYFGJsuc5Soil0lQAKbIVrPVhdHN6:HtaO5Xi2iAXVrPlHE
Behavioral task
behavioral1
Sample
90a6f2ca4cf0a3223e880203c88e0fc6.exe
Resource
win7-20231215-en
Malware Config
Targets
-
-
Target
90a6f2ca4cf0a3223e880203c88e0fc6
-
Size
1.7MB
-
MD5
90a6f2ca4cf0a3223e880203c88e0fc6
-
SHA1
3445062e06ca4bcdb53cdc72c492ac30fba2dd7f
-
SHA256
cf6c5942752c0ac771cfceadc7723f265e61e8b6799082e4248a20d819a3cfab
-
SHA512
91881ed73386db3f1ebfafd79735aca8db35283c5e8c9a53be6f48a30b5cad8fb620373e4a535b01cda379085edaa94ecf46b4e29d14aff80c38a06323be9e23
-
SSDEEP
49152:IfZ+oYFGJsuc5Soil0lQAKbIVrPVhdHN6:HtaO5Xi2iAXVrPlHE
-
Raccoon Stealer V1 payload
-
Identifies VirtualBox via ACPI registry values (likely anti-VM)
-
Checks BIOS information in registry
BIOS information is often read in order to detect sandboxing environments.
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-