General
-
Target
1ae1e60715ad410a546030d10fea265d9a6ab3ff9700965c6e71e2b4e8d685df.exe
-
Size
1.7MB
-
Sample
241117-jtehsavflb
-
MD5
2485b1dd39d368fab4041377f9e7583d
-
SHA1
f36d14d4f089d3ca2420ca0f0de1abc3592386a9
-
SHA256
1ae1e60715ad410a546030d10fea265d9a6ab3ff9700965c6e71e2b4e8d685df
-
SHA512
d04d1d9e16a799b1f2a28653317b968f48e61bcc822d15464eb8f2f811954c16186b43debafe7ac5903846a76d7cdc422744d2aad5e2ebad99f2ee83f5edfbb0
-
SSDEEP
24576:ISZ8Gq0+xapc+axEqL9IYC4I6fXxyjtqNUtljgiAwlden7TWDbPi8ApEZKOdVABf:I+8i8apcxHu6fXgtqN6Fg7S2+Yq1
Static task
static1
Behavioral task
behavioral1
Sample
1ae1e60715ad410a546030d10fea265d9a6ab3ff9700965c6e71e2b4e8d685df.exe
Resource
win7-20241023-en
Malware Config
Targets
-
-
Target
1ae1e60715ad410a546030d10fea265d9a6ab3ff9700965c6e71e2b4e8d685df.exe
-
Size
1.7MB
-
MD5
2485b1dd39d368fab4041377f9e7583d
-
SHA1
f36d14d4f089d3ca2420ca0f0de1abc3592386a9
-
SHA256
1ae1e60715ad410a546030d10fea265d9a6ab3ff9700965c6e71e2b4e8d685df
-
SHA512
d04d1d9e16a799b1f2a28653317b968f48e61bcc822d15464eb8f2f811954c16186b43debafe7ac5903846a76d7cdc422744d2aad5e2ebad99f2ee83f5edfbb0
-
SSDEEP
24576:ISZ8Gq0+xapc+axEqL9IYC4I6fXxyjtqNUtljgiAwlden7TWDbPi8ApEZKOdVABf:I+8i8apcxHu6fXgtqN6Fg7S2+Yq1
-
Identifies VirtualBox via ACPI registry values (likely anti-VM)
-
Checks BIOS information in registry
BIOS information is often read in order to detect sandboxing environments.
-
Identifies Wine through registry keys
Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-