General

  • Target

    33be823a25ae6c524b5aa5b9ecb6fbd4.exe

  • Size

    18.0MB

  • Sample

    240412-3tf66age35

  • MD5

    8d2039d776ba61baa9d1e579567783cb

  • SHA1

    ac4768c03ade7c6bff35d7dd05a76f1c85b43627

  • SHA256

    c7c6caf4d8edb8cbc0a39e7a9c19d349e2618ebe2521622a1940b58a24055032

  • SHA512

    30edba471f92cbeba5b8082545713ccaf32c122bfe794d47172c2e744a01e31359588e88a7abb6d3b9dd8c1f8236d06c93ecfbb30bb566b68d297b51e3d80447

  • SSDEEP

    393216:Dp4kxmt4dDlSYj6XRsB3k3wRBQK9us7LCKAg5Bh9rj:DK4BTjoyNk3EaK4snPZ9H

Malware Config

Targets

    • Target

      33be823a25ae6c524b5aa5b9ecb6fbd4.exe

    • Size

      18.0MB

    • MD5

      8d2039d776ba61baa9d1e579567783cb

    • SHA1

      ac4768c03ade7c6bff35d7dd05a76f1c85b43627

    • SHA256

      c7c6caf4d8edb8cbc0a39e7a9c19d349e2618ebe2521622a1940b58a24055032

    • SHA512

      30edba471f92cbeba5b8082545713ccaf32c122bfe794d47172c2e744a01e31359588e88a7abb6d3b9dd8c1f8236d06c93ecfbb30bb566b68d297b51e3d80447

    • SSDEEP

      393216:Dp4kxmt4dDlSYj6XRsB3k3wRBQK9us7LCKAg5Bh9rj:DK4BTjoyNk3EaK4snPZ9H

    • Identifies VirtualBox via ACPI registry values (likely anti-VM)

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Themida packer

      Detects Themida, an advanced Windows software protection system.

    • Checks whether UAC is enabled

MITRE ATT&CK Enterprise v15

Tasks