471d4f3dc8074ece1121675c4466a42f7f9a558dbd5addfcd9495a48482b87d2 | Triage

Sharing

General

Target

471d4f3dc8074ece1121675c4466a42f7f9a558dbd5addfcd9495a48482b87d2
Size

712KB
Sample

231114-xhvbraec9x
MD5

416b1bf043afc6f3e257c06198411476
SHA1

3cd60703bb1f8e6beab2f81c8a1ea0702df9b0fb
SHA256

471d4f3dc8074ece1121675c4466a42f7f9a558dbd5addfcd9495a48482b87d2
SHA512

05f117354518885653b87fce77426a85537e1ad92962ce6d97c4cf6adcefc57ea516a626b4cd623ca927375154622b0672076ca000c73688bf1c5375e8b8bc41
SSDEEP

12288:1x5kbp2MJQGqfJCd7tQ3IhTK6X5beobKBqVliguW69jnjTfIqkw8g:n5kbQMJQFCzQv05/mMriHW65Hp

Score

7^/10

evasion

Malware Config

Targets

- Target
  
  471d4f3dc8074ece1121675c4466a42f7f9a558dbd5addfcd9495a48482b87d2
- Size
  
  712KB
- MD5
  
  416b1bf043afc6f3e257c06198411476
- SHA1
  
  3cd60703bb1f8e6beab2f81c8a1ea0702df9b0fb
- SHA256
  
  471d4f3dc8074ece1121675c4466a42f7f9a558dbd5addfcd9495a48482b87d2
- SHA512
  
  05f117354518885653b87fce77426a85537e1ad92962ce6d97c4cf6adcefc57ea516a626b4cd623ca927375154622b0672076ca000c73688bf1c5375e8b8bc41
- SSDEEP
  
  12288:1x5kbp2MJQGqfJCd7tQ3IhTK6X5beobKBqVliguW69jnjTfIqkw8g:n5kbQMJQFCzQv05/mMriHW65Hp
Score

7^/10

evasion
- Identifies Wine through registry keys
  Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

Credential Access

Discovery

Query Registry

Virtualization/Sandbox Evasion

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2