892d6d8e203dd27378ef6c07e6a7420678bdbd1fc4ba0a199862867e06e53998 | Triage

Sharing

General

Target

892d6d8e203dd27378ef6c07e6a7420678bdbd1fc4ba0a199862867e06e53998
Size

1.1MB
Sample

221205-gptqssfh6w
MD5

d35ad8a35294fb6aef9ff4f727ee77b3
SHA1

648686d4655adbb6497079e25ec607b4e7573058
SHA256

892d6d8e203dd27378ef6c07e6a7420678bdbd1fc4ba0a199862867e06e53998
SHA512

41895329e0d6874097ed537e5332bc4dc1cdfb0cbcf9b45022fa99f3f9d6a9cfa3b8b08eae18abda40201d2c3f80ce34b9bc3831f4c5c2c2e533a0060cfaf2b9
SSDEEP

24576:uySl02/X++4REc+EIq5+/g56fi3RxZk7THO:ubo+En5+/gsfi3RxZwH

Score

7^/10

evasion

Malware Config

Targets

- Target
  
  892d6d8e203dd27378ef6c07e6a7420678bdbd1fc4ba0a199862867e06e53998
- Size
  
  1.1MB
- MD5
  
  d35ad8a35294fb6aef9ff4f727ee77b3
- SHA1
  
  648686d4655adbb6497079e25ec607b4e7573058
- SHA256
  
  892d6d8e203dd27378ef6c07e6a7420678bdbd1fc4ba0a199862867e06e53998
- SHA512
  
  41895329e0d6874097ed537e5332bc4dc1cdfb0cbcf9b45022fa99f3f9d6a9cfa3b8b08eae18abda40201d2c3f80ce34b9bc3831f4c5c2c2e533a0060cfaf2b9
- SSDEEP
  
  24576:uySl02/X++4REc+EIq5+/g56fi3RxZk7THO:ubo+En5+/gsfi3RxZwH
Score

7^/10

evasion
- Identifies Wine through registry keys
  Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

Credential Access

Discovery

Query Registry

Virtualization/Sandbox Evasion

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2