General
-
Target
c9c7039b7cac3849c48c0ce1263ff363a8749eb68cffba82a0d8905171100ba7
-
Size
1.8MB
-
Sample
241117-sxyv9sskez
-
MD5
9a5041e7d9ae72846c57f35a97c6b327
-
SHA1
b1b222afbb4602c31b214137c93a640c8bc92432
-
SHA256
c9c7039b7cac3849c48c0ce1263ff363a8749eb68cffba82a0d8905171100ba7
-
SHA512
0740b4ab05bd68863766c0331bfa9ceda95048c2c393ed20c9d6aead7b372a3f4c0f59fd0608d1cef038f6200e82f67bf1150c1658afcfc84ed24a4bf65f6f2e
-
SSDEEP
49152:BkaSnOkqm5vQurTjgXN1I8fZ7rUxHsy0jdWZT:B1m5vBTjwI0foL0jd0
Static task
static1
Behavioral task
behavioral1
Sample
c9c7039b7cac3849c48c0ce1263ff363a8749eb68cffba82a0d8905171100ba7.exe
Resource
win7-20241010-en
Malware Config
Targets
-
-
Target
c9c7039b7cac3849c48c0ce1263ff363a8749eb68cffba82a0d8905171100ba7
-
Size
1.8MB
-
MD5
9a5041e7d9ae72846c57f35a97c6b327
-
SHA1
b1b222afbb4602c31b214137c93a640c8bc92432
-
SHA256
c9c7039b7cac3849c48c0ce1263ff363a8749eb68cffba82a0d8905171100ba7
-
SHA512
0740b4ab05bd68863766c0331bfa9ceda95048c2c393ed20c9d6aead7b372a3f4c0f59fd0608d1cef038f6200e82f67bf1150c1658afcfc84ed24a4bf65f6f2e
-
SSDEEP
49152:BkaSnOkqm5vQurTjgXN1I8fZ7rUxHsy0jdWZT:B1m5vBTjwI0foL0jd0
-
Identifies VirtualBox via ACPI registry values (likely anti-VM)
-
Checks BIOS information in registry
BIOS information is often read in order to detect sandboxing environments.
-
Identifies Wine through registry keys
Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-