Overview

overview

7

Static

static

3

9b29fc2a8a...43.exe

windows7-x64

7

9b29fc2a8a...43.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    92s
  • max time network
    104s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231222-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231222-enlocale:en-usos:windows10-2004-x64system
  • submitted
    14-02-2024 08:06

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    9b29fc2a8a2bfb906480fa8f01ce4743.exe

  • Size

    1.6MB

  • MD5

    9b29fc2a8a2bfb906480fa8f01ce4743

  • SHA1

    3c2a3df7e064d387ce217b9afb834f3e4e002a28

  • SHA256

    1e88014af0a6775373d813a553f4aba72c29ea896b64739b202a0a0f7b0bd2ca

  • SHA512

    55adf17e6b1ff6f90be5497edc7022e4581946cb3d22a643824d3ec1e1083b4accf825c031f458d542eed7ef0b778bcd110c87eb164f18ace81e99d26303d4cf

  • SSDEEP

    49152:Q631PCJ/m/m8iDKC7SsFccbvpTb9t7NgpKb1x:J31D/ziDfSsFccjztpgpW

Score
7/10
evasion

Malware Config

Signatures

  • Identifies Wine through registry keys 2 TTPs 1 IoCs

    Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.

    evasion

Processes

  • C:\Users\Admin\AppData\Local\Temp\9b29fc2a8a2bfb906480fa8f01ce4743.exe
    "C:\Users\Admin\AppData\Local\Temp\9b29fc2a8a2bfb906480fa8f01ce4743.exe"
    1⤵
    • Identifies Wine through registry keys
    PID:3108

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/3108-0-0x0000000000400000-0x000000000073C000-memory.dmp

    Filesize

    3.2MB

    Download

  • memory/3108-1-0x00000000008E0000-0x00000000008E1000-memory.dmp

    Filesize

    4KB

    Download

  • memory/3108-2-0x0000000000C10000-0x0000000000D59000-memory.dmp

    Filesize

    1.3MB

    Download

  • memory/3108-3-0x0000000000400000-0x000000000073C000-memory.dmp

    Filesize

    3.2MB

    Download

  • memory/3108-4-0x00000000008E0000-0x00000000008E1000-memory.dmp

    Filesize

    4KB

    Download