General
-
Target
0848fccb55c2a1210b0df8c9876597ed3e45d0ef589ecb26acaeac24b1e28c19.exe
-
Size
2.6MB
-
Sample
241104-cjvcxstkdj
-
MD5
7c39a1c37a7f4d904bbe8217325b065c
-
SHA1
ce586160d64fccebd2e31ac08b5cb0ab942bb5e3
-
SHA256
0848fccb55c2a1210b0df8c9876597ed3e45d0ef589ecb26acaeac24b1e28c19
-
SHA512
54145eff751cdc8a77437f90080c39b1b9a27b0f0a0cb1d5f8df2566d6155d69f76821f129ba94fd9e88c5a2bcc4ac75a9f0121da39df36a659a55eb412e5dc3
-
SSDEEP
24576:LGUfZMg1T84B947Hpsi4gGH5M9ACjQqpueq2et/kvgrrvV07Iu5kdIOFoGN4+gOV:iK31IoW7JsrlZKWJCvgXVzKt+gSSY
Static task
static1
Behavioral task
behavioral1
Sample
0848fccb55c2a1210b0df8c9876597ed3e45d0ef589ecb26acaeac24b1e28c19.exe
Resource
win7-20240903-en
Malware Config
Targets
-
-
Target
0848fccb55c2a1210b0df8c9876597ed3e45d0ef589ecb26acaeac24b1e28c19.exe
-
Size
2.6MB
-
MD5
7c39a1c37a7f4d904bbe8217325b065c
-
SHA1
ce586160d64fccebd2e31ac08b5cb0ab942bb5e3
-
SHA256
0848fccb55c2a1210b0df8c9876597ed3e45d0ef589ecb26acaeac24b1e28c19
-
SHA512
54145eff751cdc8a77437f90080c39b1b9a27b0f0a0cb1d5f8df2566d6155d69f76821f129ba94fd9e88c5a2bcc4ac75a9f0121da39df36a659a55eb412e5dc3
-
SSDEEP
24576:LGUfZMg1T84B947Hpsi4gGH5M9ACjQqpueq2et/kvgrrvV07Iu5kdIOFoGN4+gOV:iK31IoW7JsrlZKWJCvgXVzKt+gSSY
-
Identifies VirtualBox via ACPI registry values (likely anti-VM)
-
Checks BIOS information in registry
BIOS information is often read in order to detect sandboxing environments.
-
Identifies Wine through registry keys
Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-
MITRE ATT&CK Enterprise v15
Defense Evasion
Impair Defenses
2Disable or Modify Tools
2Modify Registry
2Virtualization/Sandbox Evasion
2