019fb19f194def75f942718737a1d691a9a2eee5f571429e9494a1feec3eecab | Triage

Sharing

General

Target

019fb19f194def75f942718737a1d691a9a2eee5f571429e9494a1feec3eecab
Size

2.6MB
Sample

231114-xt72zsfh31
MD5

6174f1c61a30552b58e2e747d7815cd5
SHA1

465ae65cc7a59d88ec5dc1109bf3be37349c92e2
SHA256

019fb19f194def75f942718737a1d691a9a2eee5f571429e9494a1feec3eecab
SHA512

7c27c4195af45156250103bdd9264c82606d4f22fb2b84c9c5bcdc5af66281d89c38f1b3cd5198db877294dd3e78c4af10644bb4495fad105e7022972f6fc2b3
SSDEEP

49152:SqA6pDItQ7XxeZ0EW8W/ATyvcO4z1Pq3eAQm:SqFDEiAWvcOuPq3eAJ

Score

7^/10

evasion

Malware Config

Targets

- Target
  
  019fb19f194def75f942718737a1d691a9a2eee5f571429e9494a1feec3eecab
- Size
  
  2.6MB
- MD5
  
  6174f1c61a30552b58e2e747d7815cd5
- SHA1
  
  465ae65cc7a59d88ec5dc1109bf3be37349c92e2
- SHA256
  
  019fb19f194def75f942718737a1d691a9a2eee5f571429e9494a1feec3eecab
- SHA512
  
  7c27c4195af45156250103bdd9264c82606d4f22fb2b84c9c5bcdc5af66281d89c38f1b3cd5198db877294dd3e78c4af10644bb4495fad105e7022972f6fc2b3
- SSDEEP
  
  49152:SqA6pDItQ7XxeZ0EW8W/ATyvcO4z1Pq3eAQm:SqFDEiAWvcOuPq3eAJ
Score

7^/10

evasion
- Identifies Wine through registry keys
  Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

Credential Access

Discovery

Query Registry

Virtualization/Sandbox Evasion

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2