909adf8f3172e9fecaebbd171e76461b67351a3efc0472af9ffc9ddb5b14bb93 | Triage

Sharing

General

Target

909adf8f3172e9fecaebbd171e76461b67351a3efc0472af9ffc9ddb5b14bb93
Size

176KB
Sample

221003-bbs98ahgf9
MD5

6663dd986edc5c3d1962b7deaa80b7a9
SHA1

e7e60391eb1c200f5e5b58c7076002280e29af46
SHA256

909adf8f3172e9fecaebbd171e76461b67351a3efc0472af9ffc9ddb5b14bb93
SHA512

def1b3aea81a238aa3eee79d944ef397db3e5149f2e28dffe686c10a4104963cd5ceb01abce225a1aced298334f534415b4c75a7462df59becbee8d00095a665
SSDEEP

3072:pZdS3iXHFR4vvjV7/73B+240eQYyOMDTbHEeVkyyxpJa5UlBNrr3zmzVZ5O:pZo3iXHFRejF3jmPFM7yxza5UlBNLmzJ

Score

7^/10

evasion

Malware Config

Targets

- Target
  
  909adf8f3172e9fecaebbd171e76461b67351a3efc0472af9ffc9ddb5b14bb93
- Size
  
  176KB
- MD5
  
  6663dd986edc5c3d1962b7deaa80b7a9
- SHA1
  
  e7e60391eb1c200f5e5b58c7076002280e29af46
- SHA256
  
  909adf8f3172e9fecaebbd171e76461b67351a3efc0472af9ffc9ddb5b14bb93
- SHA512
  
  def1b3aea81a238aa3eee79d944ef397db3e5149f2e28dffe686c10a4104963cd5ceb01abce225a1aced298334f534415b4c75a7462df59becbee8d00095a665
- SSDEEP
  
  3072:pZdS3iXHFR4vvjV7/73B+240eQYyOMDTbHEeVkyyxpJa5UlBNrr3zmzVZ5O:pZo3iXHFRejF3jmPFM7yxza5UlBNLmzJ
Score

7^/10

evasion
- Identifies Wine through registry keys
  Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

Credential Access

Discovery

Query Registry

Virtualization/Sandbox Evasion

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2