8ac365bc939394ff868fe0f4ba2e32b033e12a0dd3b5986f031d3102c8082eb4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8ac365bc939394ff868fe0f4ba2e32b033e12a0dd3b5986f031d3102c8082eb4
Size

553KB
Sample

221128-grsxaafb9w
MD5

fc804429d1381c8212999ee5ecab2b7a
SHA1

6c5dd7feec886f7d12bebd37f9d25cb5e2d24dfa
SHA256

8ac365bc939394ff868fe0f4ba2e32b033e12a0dd3b5986f031d3102c8082eb4
SHA512

408087018a562ec12e3f8e3231f1b45f3c1397f5006be8ed6dea3c5070f200e4429ad2bf9fc2254ca962f780c12bb073aca8a6973b0d320739e651474006fda2
SSDEEP

12288:k3vckx07iUSU4ax5j3xePx+IsP/1Jid6G14:k3vckxeSXax5jBQxufidH6

Score

7^/10

evasion

Malware Config

Targets

- Target
  
  8ac365bc939394ff868fe0f4ba2e32b033e12a0dd3b5986f031d3102c8082eb4
- Size
  
  553KB
- MD5
  
  fc804429d1381c8212999ee5ecab2b7a
- SHA1
  
  6c5dd7feec886f7d12bebd37f9d25cb5e2d24dfa
- SHA256
  
  8ac365bc939394ff868fe0f4ba2e32b033e12a0dd3b5986f031d3102c8082eb4
- SHA512
  
  408087018a562ec12e3f8e3231f1b45f3c1397f5006be8ed6dea3c5070f200e4429ad2bf9fc2254ca962f780c12bb073aca8a6973b0d320739e651474006fda2
- SSDEEP
  
  12288:k3vckx07iUSU4ax5j3xePx+IsP/1Jid6G14:k3vckxeSXax5jBQxufidH6
Score

7^/10

evasion
- Identifies Wine through registry keys
  Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

Credential Access

Discovery

Query Registry

Virtualization/Sandbox Evasion

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2