b7e7ac0fac15666ba0ef44759913c80539b8be49038b6b02b43bf2e98c89f103 | Triage

Sharing

General

Target

b7e7ac0fac15666ba0ef44759913c80539b8be49038b6b02b43bf2e98c89f103
Size

204KB
Sample

221201-xk3qxadf2x
MD5

e4ecb351794d90021b4ec811ec6ec3ff
SHA1

9ee90327fef294fb9b612525a777363a69e23a8d
SHA256

b7e7ac0fac15666ba0ef44759913c80539b8be49038b6b02b43bf2e98c89f103
SHA512

3d3e1402bfba0fd32bfc4ec80571d1d7d4983def270de0cea17a82dd69dffe65089826162242ce0de109d92c77810917b83576e748cf5f70ecbf19a3d749be03
SSDEEP

3072:kLMZqUA56dmgZXN6g9GWIt6Dk/O3BkZdnCVp68/JpTbT3nbF9t4IhAxFnKgTzn9H:a2dhRgWa68OGdCVTpjXR9tTSxFnK0zn

Score

7^/10

evasion

Malware Config

Targets

- Target
  
  b7e7ac0fac15666ba0ef44759913c80539b8be49038b6b02b43bf2e98c89f103
- Size
  
  204KB
- MD5
  
  e4ecb351794d90021b4ec811ec6ec3ff
- SHA1
  
  9ee90327fef294fb9b612525a777363a69e23a8d
- SHA256
  
  b7e7ac0fac15666ba0ef44759913c80539b8be49038b6b02b43bf2e98c89f103
- SHA512
  
  3d3e1402bfba0fd32bfc4ec80571d1d7d4983def270de0cea17a82dd69dffe65089826162242ce0de109d92c77810917b83576e748cf5f70ecbf19a3d749be03
- SSDEEP
  
  3072:kLMZqUA56dmgZXN6g9GWIt6Dk/O3BkZdnCVp68/JpTbT3nbF9t4IhAxFnKgTzn9H:a2dhRgWa68OGdCVTpjXR9tTSxFnK0zn
Score

7^/10

evasion
- Identifies Wine through registry keys
  Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

Credential Access

Discovery

Query Registry

Virtualization/Sandbox Evasion

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2