General
-
Target
2024-04-28_e6e4b908a1faa6752665a5689d4b6b35_bkransomware
-
Size
16.9MB
-
Sample
240428-mfq67sdh3v
-
MD5
e6e4b908a1faa6752665a5689d4b6b35
-
SHA1
e50d29bf3dddaf752d93c32ed7e5b58e678e1345
-
SHA256
1f28d9cbd87cccfa705fcff3220407bc1806f3e133ec26fb0f5559d83dce214b
-
SHA512
290bc5cbbfba47faf3e933d0de83f7ab0cbd087c99f4ebca580dc8677cdc57db220222a47996f55186a2600912b6b409fa33271f13fe3f331e417cb79a078d4d
-
SSDEEP
196608:CKxBLxpB0O8xgTKq7z7xQQQ4nznXanXqH7DSzILVoUFK56uTwiZiu+TvXTydSnzg:nxn3UHcz7xQLMm87ezI/luTwdnzdYwTw
Static task
static1
Behavioral task
behavioral1
Sample
2024-04-28_e6e4b908a1faa6752665a5689d4b6b35_bkransomware.exe
Resource
win7-20240221-en
Malware Config
Targets
-
-
Target
2024-04-28_e6e4b908a1faa6752665a5689d4b6b35_bkransomware
-
Size
16.9MB
-
MD5
e6e4b908a1faa6752665a5689d4b6b35
-
SHA1
e50d29bf3dddaf752d93c32ed7e5b58e678e1345
-
SHA256
1f28d9cbd87cccfa705fcff3220407bc1806f3e133ec26fb0f5559d83dce214b
-
SHA512
290bc5cbbfba47faf3e933d0de83f7ab0cbd087c99f4ebca580dc8677cdc57db220222a47996f55186a2600912b6b409fa33271f13fe3f331e417cb79a078d4d
-
SSDEEP
196608:CKxBLxpB0O8xgTKq7z7xQQQ4nznXanXqH7DSzILVoUFK56uTwiZiu+TvXTydSnzg:nxn3UHcz7xQLMm87ezI/luTwdnzdYwTw
-
Identifies VirtualBox via ACPI registry values (likely anti-VM)
-
Checks BIOS information in registry
BIOS information is often read in order to detect sandboxing environments.
-
Identifies Wine through registry keys
Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.
-