0c6bfcfcca9ba8f555ca85423dc982ab1d1968536254b49640daa1dc5cdef9f4 | Triage

Sharing

General

Target

02d51c5ea29da83a9ddbce55eaec9971
Size

613KB
Sample

231229-y24j7sdfe7
MD5

02d51c5ea29da83a9ddbce55eaec9971
SHA1

06e6ec1dfd616834740aabab65e5e2da70cbda5f
SHA256

0c6bfcfcca9ba8f555ca85423dc982ab1d1968536254b49640daa1dc5cdef9f4
SHA512

bb817493ca028519a7a26d4213379e4a58ac50257f08b01126fa9e6f12a09dbee71ad89a21efdd05ed00bdbdacab9a04c7060eb82ca70f6a15113ae70195926c
SSDEEP

12288:d/9NBCGIe28OPytKPdAsbXhieJLkEcv+jKuUMg83pLtN2O6TTTUt8RpZInnVxKbV:HNcF9NP0UdAsbXMeJLJZKuUn8ZLt4O65

Score

7^/10

evasion

Malware Config

Targets

- Target
  
  02d51c5ea29da83a9ddbce55eaec9971
- Size
  
  613KB
- MD5
  
  02d51c5ea29da83a9ddbce55eaec9971
- SHA1
  
  06e6ec1dfd616834740aabab65e5e2da70cbda5f
- SHA256
  
  0c6bfcfcca9ba8f555ca85423dc982ab1d1968536254b49640daa1dc5cdef9f4
- SHA512
  
  bb817493ca028519a7a26d4213379e4a58ac50257f08b01126fa9e6f12a09dbee71ad89a21efdd05ed00bdbdacab9a04c7060eb82ca70f6a15113ae70195926c
- SSDEEP
  
  12288:d/9NBCGIe28OPytKPdAsbXhieJLkEcv+jKuUMg83pLtN2O6TTTUt8RpZInnVxKbV:HNcF9NP0UdAsbXMeJLJZKuUn8ZLt4O65
Score

7^/10

evasion
- Identifies Wine through registry keys
  Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

Credential Access

Discovery

Query Registry

Virtualization/Sandbox Evasion

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2