955984d450d8e879fe0ba897f72d3014bb0f7c63900e06efca4589c9375ba1d3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8f65bcc439587ee717a3361046772642
Size

1.7MB
Sample

240204-rxf5sabhf7
MD5

8f65bcc439587ee717a3361046772642
SHA1

f7166d7b760164861e6c3c205ab2c75e5f0863c0
SHA256

955984d450d8e879fe0ba897f72d3014bb0f7c63900e06efca4589c9375ba1d3
SHA512

09b913817d83a1a860d001ffcf3942432ce96b565ae063104ab9d338dad72b7e3fa5f4dd1559467189aae03560f6fefedfe29a983ccde90fc85f662e1ea4336a
SSDEEP

49152:/xawXu0M3G5lx4K3pZmLi1NkmsP24B5MnA:/xawxM3Wx4kgG1NDfnA

Score

7^/10

evasion

Malware Config

Targets

- Target
  
  8f65bcc439587ee717a3361046772642
- Size
  
  1.7MB
- MD5
  
  8f65bcc439587ee717a3361046772642
- SHA1
  
  f7166d7b760164861e6c3c205ab2c75e5f0863c0
- SHA256
  
  955984d450d8e879fe0ba897f72d3014bb0f7c63900e06efca4589c9375ba1d3
- SHA512
  
  09b913817d83a1a860d001ffcf3942432ce96b565ae063104ab9d338dad72b7e3fa5f4dd1559467189aae03560f6fefedfe29a983ccde90fc85f662e1ea4336a
- SSDEEP
  
  49152:/xawXu0M3G5lx4K3pZmLi1NkmsP24B5MnA:/xawxM3Wx4kgG1NDfnA
Score

7^/10

evasion
- Identifies Wine through registry keys
  Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

Credential Access

Discovery

Query Registry

Virtualization/Sandbox Evasion

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2