General
-
Target
6400bb5baddb2d5adfe13fc75e42d060N.exe
-
Size
4.7MB
-
Sample
240819-fw5wzazbkk
-
MD5
6400bb5baddb2d5adfe13fc75e42d060
-
SHA1
a59deb27c39e81baa8557860f6bad1812ebefb54
-
SHA256
2269944ef4b75790b297b4aee2c6759a7451a449bec02671651b80c78d42f919
-
SHA512
fd566844a68013b6b53d8913f706b264581bb4ae665632c7abd2a1311288f1b04db2488dfc7423164f8f010e8c2eb835e4a62edc403ea792a5f26739131013df
-
SSDEEP
98304:2hRUJRVOlEYJykc36VeOzRz9zLFEyKnrhS3tO8/5w8+cdibkrXlI9P:AUR6EYRcKVJBtyVS9OU5Gcdi2Xi9P
Malware Config
Targets
-
-
Target
6400bb5baddb2d5adfe13fc75e42d060N.exe
-
Size
4.7MB
-
MD5
6400bb5baddb2d5adfe13fc75e42d060
-
SHA1
a59deb27c39e81baa8557860f6bad1812ebefb54
-
SHA256
2269944ef4b75790b297b4aee2c6759a7451a449bec02671651b80c78d42f919
-
SHA512
fd566844a68013b6b53d8913f706b264581bb4ae665632c7abd2a1311288f1b04db2488dfc7423164f8f010e8c2eb835e4a62edc403ea792a5f26739131013df
-
SSDEEP
98304:2hRUJRVOlEYJykc36VeOzRz9zLFEyKnrhS3tO8/5w8+cdibkrXlI9P:AUR6EYRcKVJBtyVS9OU5Gcdi2Xi9P
Score7/10-
Checks BIOS information in registry
BIOS information is often read in order to detect sandboxing environments.
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-