General
-
Target
f0ef581a73f0a82860decd8ae3822cdcddc1046e702519b841c83ba09a86ae37
-
Size
4.3MB
-
Sample
220719-1g42caefcp
-
MD5
4fa99be363df0ffe488f0346c2c8414f
-
SHA1
2e0fdc7995754959640876c362ac239437366947
-
SHA256
f0ef581a73f0a82860decd8ae3822cdcddc1046e702519b841c83ba09a86ae37
-
SHA512
13ef3a3bc42ea5dfe8440b5aaaf539671834f84219ea53f387e27635f6ebb3848fa2a232c4a567f4026ddc26ea27057de3afefc6166dbbeb44d0a7c8f92f74be
Behavioral task
behavioral1
Sample
f0ef581a73f0a82860decd8ae3822cdcddc1046e702519b841c83ba09a86ae37.exe
Resource
win7-20220715-en
Malware Config
Targets
-
-
Target
f0ef581a73f0a82860decd8ae3822cdcddc1046e702519b841c83ba09a86ae37
-
Size
4.3MB
-
MD5
4fa99be363df0ffe488f0346c2c8414f
-
SHA1
2e0fdc7995754959640876c362ac239437366947
-
SHA256
f0ef581a73f0a82860decd8ae3822cdcddc1046e702519b841c83ba09a86ae37
-
SHA512
13ef3a3bc42ea5dfe8440b5aaaf539671834f84219ea53f387e27635f6ebb3848fa2a232c4a567f4026ddc26ea27057de3afefc6166dbbeb44d0a7c8f92f74be
-
Identifies Wine through registry keys
Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-