How this project breaks anti-vm protection of guloader and malware get installed even if it's heavily on sandbox?

[Siradankullanici]

Not really issue so I think you need move to discussion. While running this sample https://www.virustotal.com/gui/file/5fe761bc21851489d103c7e2d94b8643a67c9fe2b877c5ae3b376f658da495db it normally gives vm detection message but when I do automation with your project it can't detect vm + Sandboxie environment. Why this behaviour happening? I don't know why but that's awesome.

Here is the full path of start menu C:\Sandbox\hydradragonav\DefaultBox\user\current\AppData\Roaming\Microsoft\Windows\Start Menu\arthrectomy\Forsaalingers https://tria.ge/250802-rc7r1a1wat/behavioral1