88d79f9889049980c16ef5cc1bdc53c868d530894d366e91d86214f66a90f2f4 | Triage

Sharing

General

Target

88d79f9889049980c16ef5cc1bdc53c868d530894d366e91d86214f66a90f2f4
Size

870KB
Sample

221126-eqbv9sec8x
MD5

7b03789d343b4ba02c73c31ac91a302d
SHA1

ecde22e45ef4ceba412d45c897f5ec05e82cd825
SHA256

88d79f9889049980c16ef5cc1bdc53c868d530894d366e91d86214f66a90f2f4
SHA512

9f787ccc42441a780f05cf1bde1a8d4c4206e37dee45ee3ced42f14af7f59fdb583e9fde4ef8c487e3027523018ca55684e557b9dd6e4307101a7ab39027a98a
SSDEEP

12288:iHWYbDhZrf4rToYqHKKcps8Y1jmsjvpcLQ6l/BO7K6LVGx9BmaaowltpIk6hC:UthViTo5qKeYUUp6Qi/BO7tcw0IpIk

Score

7^/10

evasion

Malware Config

Targets

- Target
  
  Comprovante-09234449093-id-000000000000001923344.com
- Size
  
  1.4MB
- MD5
  
  261ca0b0b8ece29e7d98179d40899055
- SHA1
  
  3feb513fc2e5e10c13d3014c92f4566c1a01e8f8
- SHA256
  
  1e09308bb03de3f0174544bf085fa092f5f813a1269368223612b1582a8f7f5d
- SHA512
  
  5329c1f418d075812fefb76efb9c697c9fcacc919b1c92d7d5e057e5108f5b288934279e593b61d5c1dbaa233ae5c79fcfdc8f7e32dc0667a8bed3ae5e8d847e
- SSDEEP
  
  24576:+JQClUUHMwWaHdCGoBKd7s+V3eb9zlpWqBvp5Y0sZqt2tbZNqY+fYJkR/HPOijC+:gQ8rswnHdCGeKBsEeb1lnYp6YoYq/v0+
Score

7^/10

evasion
- Identifies Wine through registry keys
  Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.
  evasion
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

Credential Access

Discovery

Query Registry

Virtualization/Sandbox Evasion

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2