General
-
Target
482db39515e1926f371d4807221bdbfd2cb1365bd62477ba323cfe8aad3f7a65
-
Size
2.4MB
-
Sample
221129-spqvpaec7y
-
MD5
56a4711d6e42fe834a73ee66c4c4c254
-
SHA1
fc304fa2122ef389c3688c2a05eaf184d3992bd8
-
SHA256
482db39515e1926f371d4807221bdbfd2cb1365bd62477ba323cfe8aad3f7a65
-
SHA512
f684055fb18fcd0c0861ba332ef81f24a33fa9cd6558dd9b094d159c067aca2539a821a850c811b119d988b77a86b9eb1d02f32a2aba261f2318c2a734d63105
-
SSDEEP
49152:sW/OulPEeouFpNGVlVNRCFgZoRMTL8SsUg+FUe19:spaE58KbDZokW+FL19
Malware Config
Targets
-
-
Target
482db39515e1926f371d4807221bdbfd2cb1365bd62477ba323cfe8aad3f7a65
-
Size
2.4MB
-
MD5
56a4711d6e42fe834a73ee66c4c4c254
-
SHA1
fc304fa2122ef389c3688c2a05eaf184d3992bd8
-
SHA256
482db39515e1926f371d4807221bdbfd2cb1365bd62477ba323cfe8aad3f7a65
-
SHA512
f684055fb18fcd0c0861ba332ef81f24a33fa9cd6558dd9b094d159c067aca2539a821a850c811b119d988b77a86b9eb1d02f32a2aba261f2318c2a734d63105
-
SSDEEP
49152:sW/OulPEeouFpNGVlVNRCFgZoRMTL8SsUg+FUe19:spaE58KbDZokW+FL19
Score7/10-
Identifies Wine through registry keys
Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.
-
Themida packer
Detects Themida, an advanced Windows software protection system.
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-