General

  • Target

    2dfcb6af5b08efa15e7df9b6612adc17.exe

  • Size

    2.9MB

  • Sample

    241109-gm1rbs1rhm

  • MD5

    2dfcb6af5b08efa15e7df9b6612adc17

  • SHA1

    096fc95becb4eda34955c6e0f23687ab64b26cd6

  • SHA256

    45b417526912bfccb907d7c33db9babc5a4dca9a90b284f021f8bb0840b93af6

  • SHA512

    b2ec097b292e52bfaea96ac3614f9394c5c63a1ef75a00e3115e5bcce916455dd1cfc450b9b9b4c13a4f99ba591abbc7d4302f66b6c889925b19d4869c15b4fa

  • SSDEEP

    49152:ujMgmc4n4BgmvC9nRZzxD0YNWnUBpxBhyh2i7L4P7ntu/N0bQeoXbw/6zh18+HCA:tZj9R9eYNzU2ls/N0bQ/bwyzh1WwFhN

Malware Config

Targets

    • Target

      2dfcb6af5b08efa15e7df9b6612adc17.exe

    • Size

      2.9MB

    • MD5

      2dfcb6af5b08efa15e7df9b6612adc17

    • SHA1

      096fc95becb4eda34955c6e0f23687ab64b26cd6

    • SHA256

      45b417526912bfccb907d7c33db9babc5a4dca9a90b284f021f8bb0840b93af6

    • SHA512

      b2ec097b292e52bfaea96ac3614f9394c5c63a1ef75a00e3115e5bcce916455dd1cfc450b9b9b4c13a4f99ba591abbc7d4302f66b6c889925b19d4869c15b4fa

    • SSDEEP

      49152:ujMgmc4n4BgmvC9nRZzxD0YNWnUBpxBhyh2i7L4P7ntu/N0bQeoXbw/6zh18+HCA:tZj9R9eYNzU2ls/N0bQ/bwyzh1WwFhN

    • Identifies VirtualBox via ACPI registry values (likely anti-VM)

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Checks whether UAC is enabled

MITRE ATT&CK Enterprise v15

Tasks