968b2bd737c6710afceff707a886951ad8e8ad547ec02a8ec13d4a435b409808 | Triage

Sharing

General

Target

49af28cef2094f14ccd405606906de85
Size

171KB
Sample

231226-by3r6sbfcl
MD5

49af28cef2094f14ccd405606906de85
SHA1

1bf37014dfc14bc29fcc51dae9754402fae54407
SHA256

968b2bd737c6710afceff707a886951ad8e8ad547ec02a8ec13d4a435b409808
SHA512

9d511c5bd23e57b791a625fb5d8113aeafd29200157bec46e4087181012d4ac527aa37796364d210d3ad63cfad54ac79be51ca47bb71a0fc61fa386c18c50996
SSDEEP

1536:6Yk8BfTAPWQh3hlDObxHs+VMaVEP0O0EoAfKtl:e8BfEPn/liVHswMaVEPf0sfKtl

Score

7^/10

evasion

Malware Config

Targets

- Target
  
  49af28cef2094f14ccd405606906de85
- Size
  
  171KB
- MD5
  
  49af28cef2094f14ccd405606906de85
- SHA1
  
  1bf37014dfc14bc29fcc51dae9754402fae54407
- SHA256
  
  968b2bd737c6710afceff707a886951ad8e8ad547ec02a8ec13d4a435b409808
- SHA512
  
  9d511c5bd23e57b791a625fb5d8113aeafd29200157bec46e4087181012d4ac527aa37796364d210d3ad63cfad54ac79be51ca47bb71a0fc61fa386c18c50996
- SSDEEP
  
  1536:6Yk8BfTAPWQh3hlDObxHs+VMaVEP0O0EoAfKtl:e8BfEPn/liVHswMaVEPf0sfKtl
Score

7^/10

evasion
- Identifies Wine through registry keys
  Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

Credential Access

Discovery

Query Registry

Virtualization/Sandbox Evasion

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2