a594f1303dce91cd9d8fae2ffcd7285abd33421b342acf0aa6be24d09080117a | Triage

Sharing

General

Target

7e76f10f9cd33bfef5d841202054d2c9
Size

162KB
Sample

231226-vge5bsffg9
MD5

7e76f10f9cd33bfef5d841202054d2c9
SHA1

5d387e298e18f74e61c1b8d90ce3fbf8f19a4cfd
SHA256

a594f1303dce91cd9d8fae2ffcd7285abd33421b342acf0aa6be24d09080117a
SHA512

3c4cdf24bf2c58fee5b31377099c8c786f4b7b61526f073c2e7dc64179b10b78941cb2aca509d82687443bb83669147c6390c83f50b75eee2b622a252f8334cb
SSDEEP

1536:rtHMtr4p1cFGNDBp4s2DhK6dAsAXf2+uykUY:rtH44pOF+1p50lAsGMykUY

Score

7^/10

evasion

Malware Config

Targets

- Target
  
  7e76f10f9cd33bfef5d841202054d2c9
- Size
  
  162KB
- MD5
  
  7e76f10f9cd33bfef5d841202054d2c9
- SHA1
  
  5d387e298e18f74e61c1b8d90ce3fbf8f19a4cfd
- SHA256
  
  a594f1303dce91cd9d8fae2ffcd7285abd33421b342acf0aa6be24d09080117a
- SHA512
  
  3c4cdf24bf2c58fee5b31377099c8c786f4b7b61526f073c2e7dc64179b10b78941cb2aca509d82687443bb83669147c6390c83f50b75eee2b622a252f8334cb
- SSDEEP
  
  1536:rtHMtr4p1cFGNDBp4s2DhK6dAsAXf2+uykUY:rtH44pOF+1p50lAsGMykUY
Score

7^/10

evasion
- Identifies Wine through registry keys
  Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

Credential Access

Discovery

Query Registry

Virtualization/Sandbox Evasion

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2