General
-
Target
source_prepared.exe
-
Size
76.1MB
-
Sample
240630-2ymdasyarh
-
MD5
36ea9694bbf3799f299365a3d491d418
-
SHA1
4635c08f597e840f2ad1bddb6622ad901e3889cd
-
SHA256
2c4ae9ec18e481b7011a2007094cf1b2b17532779d8449df16f46ec08fec0aae
-
SHA512
09765c0ca0ab30b3d9763aaa9bcfef6a41d1d6b5137f427ec446ff6a080cd09cc5122afb74b6ed01c3b906c034a619bb36439736071af089c496c1e3221e32d0
-
SSDEEP
1572864:kvFUQ6lvySk8IpG7V+VPhqIbE7WTylPj4iY4MHHLeqPNLtDaSWUdZvPtX:kvFU1dySkB05awIxTy5nMHVLteSZttX
Behavioral task
behavioral1
Sample
source_prepared.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
source_prepared.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
source_prepared.exe
-
Size
76.1MB
-
MD5
36ea9694bbf3799f299365a3d491d418
-
SHA1
4635c08f597e840f2ad1bddb6622ad901e3889cd
-
SHA256
2c4ae9ec18e481b7011a2007094cf1b2b17532779d8449df16f46ec08fec0aae
-
SHA512
09765c0ca0ab30b3d9763aaa9bcfef6a41d1d6b5137f427ec446ff6a080cd09cc5122afb74b6ed01c3b906c034a619bb36439736071af089c496c1e3221e32d0
-
SSDEEP
1572864:kvFUQ6lvySk8IpG7V+VPhqIbE7WTylPj4iY4MHHLeqPNLtDaSWUdZvPtX:kvFU1dySkB05awIxTy5nMHVLteSZttX
Score9/10-
Enumerates VirtualBox DLL files
-
Command and Scripting Interpreter: PowerShell
Run Powershell to modify Windows Defender settings to add exclusions for file extensions, paths, and processes.
-
Loads dropped DLL
-
Adds Run key to start application
-