Overview

overview

7

Static

static

7

mingxiaozi/Domain.exe

windows7-x64

7

mingxiaozi/Domain.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    268da59d80e742774c628a3ccc79b8ba

  • Size

    2.6MB

  • Sample

    231231-d463wsaehk

  • MD5

    268da59d80e742774c628a3ccc79b8ba

  • SHA1

    a6e3c9590dd4eddb05dcec93aa77c1b48bf278de

  • SHA256

    3a558f250fe90b9ab40d8699c95978fe6d4d0642fc10c562d493b3690922120d

  • SHA512

    da406a7b69761c2a11c390af3e89e1023fa4c3586411a32d0972971f3e33dcabb10c8094276052b47a646dd27a1b21a15453d7b801e43bdab22dee6cb82af68b

  • SSDEEP

    49152:S6sCal8tGIaKKJyxIxu0oshPHe/SrBTEBuTU9qLlT/Eh+BMVM7sQ/q1k7:2CLt/60xR0osVH61B0hRu+sM7V/v

Score
7/10
evasionthemida

Malware Config

Targets

    • Target

      mingxiaozi/Domain.exe

    • Size

      2.5MB

    • MD5

      81f0fb11bd80498a62818f74c86ba118

    • SHA1

      df02e26206e40b662940d19b1e44af92d70c823f

    • SHA256

      b9a656ceca29c9b7460f890571d4dce3852d37bdc2d9303364ccb7f2762c59a6

    • SHA512

      11f5bc9cab461ecddf6ca6c40a2971d0c46da045c207ac05a9ec34f607d5dede4b39318d63c4cfaafb13f65b9fb9380272556475a83578ed794b7e77641ff2f9

    • SSDEEP

      49152:ksU8lg7GGuaKtyTw5uZmKm8VonOISYOlFKM8rj13PDz2:XUX7HsYTtZmUon3S/qH1fDz2

    Score
    7/10
    evasionthemida

    • Identifies Wine through registry keys

      Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.

      evasion

    • Themida packer

      Detects Themida, an advanced Windows software protection system.

      themida
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks