General

  • Target

    Tweaks.exe

  • Size

    1.4MB

  • Sample

    241110-bz2w9swhrb

  • MD5

    e12573c2603b2e3d18faac68f42c36ec

  • SHA1

    77e7dadde05bef60480866cf389a086141e2c22a

  • SHA256

    40409fa2936a49876d650e74644bb18366cbbfb3d28a97aad6f833b02394ab2a

  • SHA512

    9bbed974100cabf0b0dc497a98201dbcd5d41c03024356c28f28425408a3bf02bf97c71a74272ca4b40cc2dd5446906cb52d1899216ecdd7221f414754851039

  • SSDEEP

    24576:qGxbVqOuF8HcZb6eKdQvpqyLsUoeHfL9Om5aIImgD9cQqQ2Yg86pJfySuN2L/FJD:9VqOQs86ldQvjsoFTMcjYg8kfyxN23hX

Score
9/10

Malware Config

Targets

    • Target

      Tweaks.exe

    • Size

      1.4MB

    • MD5

      e12573c2603b2e3d18faac68f42c36ec

    • SHA1

      77e7dadde05bef60480866cf389a086141e2c22a

    • SHA256

      40409fa2936a49876d650e74644bb18366cbbfb3d28a97aad6f833b02394ab2a

    • SHA512

      9bbed974100cabf0b0dc497a98201dbcd5d41c03024356c28f28425408a3bf02bf97c71a74272ca4b40cc2dd5446906cb52d1899216ecdd7221f414754851039

    • SSDEEP

      24576:qGxbVqOuF8HcZb6eKdQvpqyLsUoeHfL9Om5aIImgD9cQqQ2Yg86pJfySuN2L/FJD:9VqOQs86ldQvjsoFTMcjYg8kfyxN23hX

    Score
    9/10
    • Looks for VirtualBox Guest Additions in registry

    • Looks for VMWare Tools registry key

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

MITRE ATT&CK Enterprise v15

Tasks