378d505e93c1c9b2abffcc817bcad8b85d7fe3e2266db2f996d9a20f00a7ab15 | Triage

Sharing

General

Target

378d505e93c1c9b2abffcc817bcad8b85d7fe3e2266db2f996d9a20f00a7ab15
Size

142KB
Sample

221129-lsajjsge37
MD5

03e119e1dfc2dc9ee25e48e0a1ea96c0
SHA1

4ec93df46709170897e000c53959344f36181ebb
SHA256

378d505e93c1c9b2abffcc817bcad8b85d7fe3e2266db2f996d9a20f00a7ab15
SHA512

2177c89092b344fbc5b737e6a6bb8c5624934ce58b09d3b1ff69f4707729cc977cbc79fb6f2841c79e5484cd307ca35bcc32005fcf1199dea3d3d348c4434b5e
SSDEEP

3072:YkwJqMr41FMQHNWq3T7nREaks+kTsLZWxzRxom4k1U:1wMMAFMmTHkkTEUxTU

Score

7^/10

evasion

Malware Config

Targets

- Target
  
  378d505e93c1c9b2abffcc817bcad8b85d7fe3e2266db2f996d9a20f00a7ab15
- Size
  
  142KB
- MD5
  
  03e119e1dfc2dc9ee25e48e0a1ea96c0
- SHA1
  
  4ec93df46709170897e000c53959344f36181ebb
- SHA256
  
  378d505e93c1c9b2abffcc817bcad8b85d7fe3e2266db2f996d9a20f00a7ab15
- SHA512
  
  2177c89092b344fbc5b737e6a6bb8c5624934ce58b09d3b1ff69f4707729cc977cbc79fb6f2841c79e5484cd307ca35bcc32005fcf1199dea3d3d348c4434b5e
- SSDEEP
  
  3072:YkwJqMr41FMQHNWq3T7nREaks+kTsLZWxzRxom4k1U:1wMMAFMmTHkkTEUxTU
Score

7^/10

evasion
- Identifies Wine through registry keys
  Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

Credential Access

Discovery

Query Registry

Virtualization/Sandbox Evasion

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2