8818b3c369d6d4fce4ce10216cd8d1e0258f274d09cf03f8926f8cfed7b53963 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8818b3c369d6d4fce4ce10216cd8d1e0258f274d09cf03f8926f8cfed7b53963
Size

712KB
Sample

231114-xlklqaeg5t
MD5

6d6864d854d532425f10d02f9ac65b70
SHA1

5c6dc189965830558c5653a6cc3e0983f4fe64b2
SHA256

8818b3c369d6d4fce4ce10216cd8d1e0258f274d09cf03f8926f8cfed7b53963
SHA512

ee2ab936de113baef7ff90bc467ad46c70723f6da7cbc7c67529022fec9d0f6d4284d33705711977a0d38c228a3fbaa22dc57dd5ebe4ca14aebeb09c4b389ec3
SSDEEP

12288:Oc3+SoLKEcYYgII3uejkO3fy6utAXTmzZxjGm9KCgQ10amrRIl3vF:p3+LK5vHejk+aHxGmNgQa3ryX

Score

7^/10

evasion

Malware Config

Targets

- Target
  
  8818b3c369d6d4fce4ce10216cd8d1e0258f274d09cf03f8926f8cfed7b53963
- Size
  
  712KB
- MD5
  
  6d6864d854d532425f10d02f9ac65b70
- SHA1
  
  5c6dc189965830558c5653a6cc3e0983f4fe64b2
- SHA256
  
  8818b3c369d6d4fce4ce10216cd8d1e0258f274d09cf03f8926f8cfed7b53963
- SHA512
  
  ee2ab936de113baef7ff90bc467ad46c70723f6da7cbc7c67529022fec9d0f6d4284d33705711977a0d38c228a3fbaa22dc57dd5ebe4ca14aebeb09c4b389ec3
- SSDEEP
  
  12288:Oc3+SoLKEcYYgII3uejkO3fy6utAXTmzZxjGm9KCgQ10amrRIl3vF:p3+LK5vHejk+aHxGmNgQa3ryX
Score

7^/10

evasion
- Identifies Wine through registry keys
  Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

Credential Access

Discovery

Query Registry

Virtualization/Sandbox Evasion

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2