1e3a28dd2df5f31b3bd3ed9bb4d04304fc70b37c997c16f3f579ab32fd814c5c | Triage

Sharing

General

Target

1e3a28dd2df5f31b3bd3ed9bb4d04304fc70b37c997c16f3f579ab32fd814c5c
Size

700KB
Sample

231220-f82p3shad3
MD5

649198b2f60f73485ff8b2aa86b7b58c
SHA1

895a3eb523d2566ac327ac70b6da1b319b6f8f73
SHA256

1e3a28dd2df5f31b3bd3ed9bb4d04304fc70b37c997c16f3f579ab32fd814c5c
SHA512

e20c18616886c1e1f63cc6718c4c981f04a412424553f0a5fdf9dbb690774d2518f45699623aa87912e8f3af5d4b004971e3660a7bbbb231276de80e349b1249
SSDEEP

6144:4OiKYOX5snnKCoypmj60fhiZ0bpEwoCWvLP3g1nqFCssQpJH3C7FJ7zZ:RYOXen4eozbfhWvLP3g1nYCbt

Score

7^/10

evasion

Malware Config

Targets

- Target
  
  1e3a28dd2df5f31b3bd3ed9bb4d04304fc70b37c997c16f3f579ab32fd814c5c
- Size
  
  700KB
- MD5
  
  649198b2f60f73485ff8b2aa86b7b58c
- SHA1
  
  895a3eb523d2566ac327ac70b6da1b319b6f8f73
- SHA256
  
  1e3a28dd2df5f31b3bd3ed9bb4d04304fc70b37c997c16f3f579ab32fd814c5c
- SHA512
  
  e20c18616886c1e1f63cc6718c4c981f04a412424553f0a5fdf9dbb690774d2518f45699623aa87912e8f3af5d4b004971e3660a7bbbb231276de80e349b1249
- SSDEEP
  
  6144:4OiKYOX5snnKCoypmj60fhiZ0bpEwoCWvLP3g1nqFCssQpJH3C7FJ7zZ:RYOXen4eozbfhWvLP3g1nYCbt
Score

7^/10

evasion
- Identifies Wine through registry keys
  Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

Credential Access

Discovery

Query Registry

Virtualization/Sandbox Evasion

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2