Analysis of samples following this naming convention reveals the following behaviors: :
If you have interacted with this specific file, immediate remediation is required:
It may use long sleep calls or check for virtual machine artifacts (like VMWare or VirtualBox) to detect if it is being run in a sandbox.
: Disconnect from the internet to prevent the malware from sending your data to its C2 server.
