General
-
Target
Tweaks.exe
-
Size
1.4MB
-
Sample
241110-bz2w9swhrb
-
MD5
e12573c2603b2e3d18faac68f42c36ec
-
SHA1
77e7dadde05bef60480866cf389a086141e2c22a
-
SHA256
40409fa2936a49876d650e74644bb18366cbbfb3d28a97aad6f833b02394ab2a
-
SHA512
9bbed974100cabf0b0dc497a98201dbcd5d41c03024356c28f28425408a3bf02bf97c71a74272ca4b40cc2dd5446906cb52d1899216ecdd7221f414754851039
-
SSDEEP
24576:qGxbVqOuF8HcZb6eKdQvpqyLsUoeHfL9Om5aIImgD9cQqQ2Yg86pJfySuN2L/FJD:9VqOQs86ldQvjsoFTMcjYg8kfyxN23hX
Static task
static1
Behavioral task
behavioral1
Sample
Tweaks.exe
Resource
win11-20241007-en
Malware Config
Targets
-
-
Target
Tweaks.exe
-
Size
1.4MB
-
MD5
e12573c2603b2e3d18faac68f42c36ec
-
SHA1
77e7dadde05bef60480866cf389a086141e2c22a
-
SHA256
40409fa2936a49876d650e74644bb18366cbbfb3d28a97aad6f833b02394ab2a
-
SHA512
9bbed974100cabf0b0dc497a98201dbcd5d41c03024356c28f28425408a3bf02bf97c71a74272ca4b40cc2dd5446906cb52d1899216ecdd7221f414754851039
-
SSDEEP
24576:qGxbVqOuF8HcZb6eKdQvpqyLsUoeHfL9Om5aIImgD9cQqQ2Yg86pJfySuN2L/FJD:9VqOQs86ldQvjsoFTMcjYg8kfyxN23hX
Score9/10-
Looks for VirtualBox Guest Additions in registry
-
Looks for VMWare Tools registry key
-
Checks BIOS information in registry
BIOS information is often read in order to detect sandboxing environments.
-
Maps connected drives based on registry
Disk information is often read in order to detect sandboxing environments.
-