Overview

overview

7

Static

static

7

788e07b235...6e.dll

windows7-x64

7

788e07b235...6e.dll

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    788e07b235edced18a902714f09b566e

  • Size

    688KB

  • Sample

    240126-2evwbshbar

  • MD5

    788e07b235edced18a902714f09b566e

  • SHA1

    2920f0b9e1357021856f97a56d7f6c80851141f3

  • SHA256

    cc3bf40f32781dd77bdd46933f80115247e865268b642ca95a185c4214e8be91

  • SHA512

    a7688748267915bf0ab3837e606653570f5b2d69402413af998e39f7416dd8664dc790d8a79d99e0151f940cd99f74722bc2d825b941db2c77a8cf7782fcb5c2

  • SSDEEP

    12288:fKQ2Tdo2PkgbuPBSWDQZaXMz/uVuUON2NGVFLD94EAD:f2Tdo2PnCPBSWDqaQmVDAMGVFLDA

Score
7/10
evasionthemida

Malware Config

Targets

    • Target

      788e07b235edced18a902714f09b566e

    • Size

      688KB

    • MD5

      788e07b235edced18a902714f09b566e

    • SHA1

      2920f0b9e1357021856f97a56d7f6c80851141f3

    • SHA256

      cc3bf40f32781dd77bdd46933f80115247e865268b642ca95a185c4214e8be91

    • SHA512

      a7688748267915bf0ab3837e606653570f5b2d69402413af998e39f7416dd8664dc790d8a79d99e0151f940cd99f74722bc2d825b941db2c77a8cf7782fcb5c2

    • SSDEEP

      12288:fKQ2Tdo2PkgbuPBSWDQZaXMz/uVuUON2NGVFLD94EAD:f2Tdo2PnCPBSWDqaQmVDAMGVFLDA

    Score
    7/10
    evasionthemida

    • Identifies Wine through registry keys

      Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.

      evasion

    • Themida packer

      Detects Themida, an advanced Windows software protection system.

      themida
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks