General
-
Target
1649d63956459c1aaa9d1e4856ec985798b8762e1d26a4bf24dc147d8efd5408
-
Size
4.3MB
-
Sample
240524-ec89lsca46
-
MD5
eddcfbf29eab630cb154edac3521d17e
-
SHA1
42fe0fb2705a796bffa348162263a952c9c62679
-
SHA256
1649d63956459c1aaa9d1e4856ec985798b8762e1d26a4bf24dc147d8efd5408
-
SHA512
a714ab1a92cdc706d1079c6e02f74438ab682d9d010a960bf7f2f8f0a37d17b718bb4ea55253fe05bac53c979985316d7c6cfc1bfdf10cbd858131658436216e
-
SSDEEP
98304:AQ7a+V0zMwO7oECepheOLtl3dEeGJMV+tzVoTrxAIhRXrQkwE:J75QMwO7oZeBl3zGJKqkrxLhRJwE
Behavioral task
behavioral1
Sample
1649d63956459c1aaa9d1e4856ec985798b8762e1d26a4bf24dc147d8efd5408.exe
Resource
win7-20240220-en
Malware Config
Targets
-
-
Target
1649d63956459c1aaa9d1e4856ec985798b8762e1d26a4bf24dc147d8efd5408
-
Size
4.3MB
-
MD5
eddcfbf29eab630cb154edac3521d17e
-
SHA1
42fe0fb2705a796bffa348162263a952c9c62679
-
SHA256
1649d63956459c1aaa9d1e4856ec985798b8762e1d26a4bf24dc147d8efd5408
-
SHA512
a714ab1a92cdc706d1079c6e02f74438ab682d9d010a960bf7f2f8f0a37d17b718bb4ea55253fe05bac53c979985316d7c6cfc1bfdf10cbd858131658436216e
-
SSDEEP
98304:AQ7a+V0zMwO7oECepheOLtl3dEeGJMV+tzVoTrxAIhRXrQkwE:J75QMwO7oZeBl3zGJKqkrxLhRJwE
-
Identifies VirtualBox via ACPI registry values (likely anti-VM)
-
Checks BIOS information in registry
BIOS information is often read in order to detect sandboxing environments.
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-