General
-
Target
459a5cdce5a8807183c7e76468ade9922e44e9c0cfaf19694968b5258a819560
-
Size
1.4MB
-
Sample
221123-z5x29shf3v
-
MD5
5f694485f38ade6340a0d7939d91de3c
-
SHA1
792249e1e7892fabe1434a18c12a082a0ecc12fc
-
SHA256
459a5cdce5a8807183c7e76468ade9922e44e9c0cfaf19694968b5258a819560
-
SHA512
cd4fa0d98663f5fed934697b2c03abab966a75a1feb911e14807a82b02bba6ad17fcfc974485efc297ac430b5d41e5d01e2f1ae0d9d6f339b13efaae9d66e530
-
SSDEEP
24576:YupbgxFrk3Z+FQ22VV03bbxYc9DoXGupWuPo/VaycTw92h:Xpb8Wk2H0r2SD/VfCh
Behavioral task
behavioral1
Sample
459a5cdce5a8807183c7e76468ade9922e44e9c0cfaf19694968b5258a819560.dll
Resource
win7-20220812-en
Malware Config
Targets
-
-
Target
459a5cdce5a8807183c7e76468ade9922e44e9c0cfaf19694968b5258a819560
-
Size
1.4MB
-
MD5
5f694485f38ade6340a0d7939d91de3c
-
SHA1
792249e1e7892fabe1434a18c12a082a0ecc12fc
-
SHA256
459a5cdce5a8807183c7e76468ade9922e44e9c0cfaf19694968b5258a819560
-
SHA512
cd4fa0d98663f5fed934697b2c03abab966a75a1feb911e14807a82b02bba6ad17fcfc974485efc297ac430b5d41e5d01e2f1ae0d9d6f339b13efaae9d66e530
-
SSDEEP
24576:YupbgxFrk3Z+FQ22VV03bbxYc9DoXGupWuPo/VaycTw92h:Xpb8Wk2H0r2SD/VfCh
-
Identifies Wine through registry keys
Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-