General
-
Target
e6ae909e87b7c9548c22c7231d1f5a62f11ae21c62057ca2972fa5a2382dbfc1
-
Size
862KB
-
Sample
221127-nyqh3aec75
-
MD5
8a5abaa245a3e8fed32689f1daaf0185
-
SHA1
57417c64b6ff8610c1b2b4d263d46df15a3666f1
-
SHA256
e6ae909e87b7c9548c22c7231d1f5a62f11ae21c62057ca2972fa5a2382dbfc1
-
SHA512
51877433b7d96a43b77d5d313364876ab75f26613c41597f84eab64c98ca887f10a58c8c5f7df2a6c721b5fde699aa83aaab70311d55e1abe7aba7ca71c57cdd
-
SSDEEP
12288:6gDIklTu75YtgDCVB9pR3idO970Ok/7DvALQjhzDLdv3/C2vWBuyDkbA:pDIN7Ot+CVBzRydm0OcbA8hLdv+BuG5
Malware Config
Targets
-
-
Target
e6ae909e87b7c9548c22c7231d1f5a62f11ae21c62057ca2972fa5a2382dbfc1
-
Size
862KB
-
MD5
8a5abaa245a3e8fed32689f1daaf0185
-
SHA1
57417c64b6ff8610c1b2b4d263d46df15a3666f1
-
SHA256
e6ae909e87b7c9548c22c7231d1f5a62f11ae21c62057ca2972fa5a2382dbfc1
-
SHA512
51877433b7d96a43b77d5d313364876ab75f26613c41597f84eab64c98ca887f10a58c8c5f7df2a6c721b5fde699aa83aaab70311d55e1abe7aba7ca71c57cdd
-
SSDEEP
12288:6gDIklTu75YtgDCVB9pR3idO970Ok/7DvALQjhzDLdv3/C2vWBuyDkbA:pDIN7Ot+CVBzRydm0OcbA8hLdv+BuG5
Score7/10-
Identifies Wine through registry keys
Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.
-
Themida packer
Detects Themida, an advanced Windows software protection system.
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-