General
-
Target
source_prepared.exe
-
Size
80.7MB
-
Sample
241231-12xsrsvjar
-
MD5
a173c6f0be8efcc01e0bd91595abec0c
-
SHA1
d1bc14894444aa194be96507f62a4de29b699d4d
-
SHA256
9d25eaad4027759dee5742218b8b47c18892f77e9ad44c7bc9c09f509d51e016
-
SHA512
567364f3ed2272c56b127a69171180c84b0fffb5a458f12390ca1c12cf723ba75e9c88cc2948126a3abbfedc249e3d297714116a8e6e23ce816261d3636d11c1
-
SSDEEP
1572864:yGKlDWjysmwSk8IpG7V+VPhqFiE7BbliEoiYgj+h58sMw/DBZB:bK51smwSkB05awFVwE65Dt
Behavioral task
behavioral1
Sample
source_prepared.exe
Resource
win11-20241007-en
Malware Config
Targets
-
-
Target
source_prepared.exe
-
Size
80.7MB
-
MD5
a173c6f0be8efcc01e0bd91595abec0c
-
SHA1
d1bc14894444aa194be96507f62a4de29b699d4d
-
SHA256
9d25eaad4027759dee5742218b8b47c18892f77e9ad44c7bc9c09f509d51e016
-
SHA512
567364f3ed2272c56b127a69171180c84b0fffb5a458f12390ca1c12cf723ba75e9c88cc2948126a3abbfedc249e3d297714116a8e6e23ce816261d3636d11c1
-
SSDEEP
1572864:yGKlDWjysmwSk8IpG7V+VPhqFiE7BbliEoiYgj+h58sMw/DBZB:bK51smwSkB05awFVwE65Dt
Score9/10-
Enumerates VirtualBox DLL files
-
Command and Scripting Interpreter: PowerShell
Run Powershell to modify Windows Defender settings to add exclusions for file extensions, paths, and processes.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-