3ad54772a121d1f92a8bd083197969e1f3bb4b8bed126a1ae0c6e20a9240519d | Triage

Sharing

General

Target

3ad54772a121d1f92a8bd083197969e1f3bb4b8bed126a1ae0c6e20a9240519d
Size

174KB
Sample

221123-rw53hscf7s
MD5

8f4595cedd010fb745a439d30baf835b
SHA1

dbdb258b2e4d93e393b53fca626bb737c9b73dd6
SHA256

3ad54772a121d1f92a8bd083197969e1f3bb4b8bed126a1ae0c6e20a9240519d
SHA512

190bfcd5ca52adf5ceba374e16f91766eecbededcff679255beb130d748be4166a950cd1607e0f802704e68b50aa3f8e7b0387aee25a6e60a7548d0e412ac309
SSDEEP

768:UBn1vlL+5IDCxFcJcFAkd3zZydTiDY20Su3p686W0yNy8alL7OJ/w/p:UF19L+5IDmcJE3EZN3s86W0yNyLvy

Score

7^/10

evasion

Malware Config

Targets

- Target
  
  3ad54772a121d1f92a8bd083197969e1f3bb4b8bed126a1ae0c6e20a9240519d
- Size
  
  174KB
- MD5
  
  8f4595cedd010fb745a439d30baf835b
- SHA1
  
  dbdb258b2e4d93e393b53fca626bb737c9b73dd6
- SHA256
  
  3ad54772a121d1f92a8bd083197969e1f3bb4b8bed126a1ae0c6e20a9240519d
- SHA512
  
  190bfcd5ca52adf5ceba374e16f91766eecbededcff679255beb130d748be4166a950cd1607e0f802704e68b50aa3f8e7b0387aee25a6e60a7548d0e412ac309
- SSDEEP
  
  768:UBn1vlL+5IDCxFcJcFAkd3zZydTiDY20Su3p686W0yNy8alL7OJ/w/p:UF19L+5IDmcJE3EZN3s86W0yNyLvy
Score

7^/10

evasion
- Identifies Wine through registry keys
  Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

Credential Access

Discovery

Query Registry

Virtualization/Sandbox Evasion

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2