How does malware know difference between the Virtual Machine and the real Machine?
Tags
attack-pattern: Hardware - T1592.001 Malware - T1587.001 Malware - T1588.001 Powershell - T1059.001 Powershell - T1086
Show in Graph
Common Information
Type Value
UUID b5be0f22-971a-47e9-b095-c520c85d5733
Fingerprint ee9d183b6f138642
Analysis status DONE
Considered CTI value 0
Text language
Published Nov. 14, 2024, 12:45 a.m.
Added to db Nov. 14, 2024, 2:11 a.m.
Last updated Nov. 17, 2024, 7:44 p.m.
Headline How does malware know difference between the Virtual Machine and the real Machine?
Title How does malware know difference between the Virtual Machine and the real Machine?
Detected Hints/Tags/Attributes 32/1/10
Source URLs
Redirection Url
Details Source https://medium.com/@snpxblack2006/how-does-malware-know-difference-between-the-virtual-machine-and-the-real-machine-b44b0eb45584?source=rss------malware-5
URL Provider
Details Provider Source level domain
Details medium.com medium.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 171 Malware on Medium https://medium.com/feed/tag/malware 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details Domain 4127 
github.com
Details Domain 675 
www.linkedin.com
Details File 42 
vboxservice.exe
Details File 74 
vmtoolsd.exe
Details Github username 2 
everythingblackkk
Details Url 2 
https://github.com/everythingblackkk
Details Windows Registry Key 1 
HKLM\SYSTEM\CurrentControlSet\Services\VBoxGuest
Details Windows Registry Key 1 
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\VBoxGuest
Details Windows Registry Key 4 
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class
Details Windows Registry Key 2 
HKEY_LOCAL_MACHINE\HARDWARE\DEVICEMAP\Scsi\Scsi