Overview

overview

7

Static

static

e760d263cf...fc.exe

windows7-x64

7

e760d263cf...fc.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e760d263cfe1c998cc4844fb98a9370b73ac398ff05bd72a79b6315548a503fc

  • Size

    1.5MB

  • Sample

    221123-s2de5afh31

  • MD5

    b309e8fd719bfb016d2e26402a0c7d50

  • SHA1

    9fa495595af8df196e5dcc5bb28d7f7f6374d433

  • SHA256

    e760d263cfe1c998cc4844fb98a9370b73ac398ff05bd72a79b6315548a503fc

  • SHA512

    a24fa7e169397ebbb96b6ff38947a992d7cf663a7a14a2786e235b2d5cb837db8d79e0bfa3e207833d074678e81a48b22ce1eeef216cb555f4b7175b58bad3a5

  • SSDEEP

    24576:5X5Hutf1Avo75v4/Knjtu8480JFM7S8NjoRveTgf28G1QFpSER:5XFuio719nh48KEyeTySY

Score
7/10
evasion

Malware Config

Targets

    • Target

      e760d263cfe1c998cc4844fb98a9370b73ac398ff05bd72a79b6315548a503fc

    • Size

      1.5MB

    • MD5

      b309e8fd719bfb016d2e26402a0c7d50

    • SHA1

      9fa495595af8df196e5dcc5bb28d7f7f6374d433

    • SHA256

      e760d263cfe1c998cc4844fb98a9370b73ac398ff05bd72a79b6315548a503fc

    • SHA512

      a24fa7e169397ebbb96b6ff38947a992d7cf663a7a14a2786e235b2d5cb837db8d79e0bfa3e207833d074678e81a48b22ce1eeef216cb555f4b7175b58bad3a5

    • SSDEEP

      24576:5X5Hutf1Avo75v4/Knjtu8480JFM7S8NjoRveTgf28G1QFpSER:5XFuio719nh48KEyeTySY

    Score
    7/10
    evasion

    • Identifies Wine through registry keys

      Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.

      evasion
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

1
T1497

Credential Access

Discovery

Query Registry

1
T1012

Virtualization/Sandbox Evasion

1
T1497

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks