General
-
Target
b43a337eaf7202c3e2f9e344d42fb9d5
-
Size
1.7MB
-
Sample
240305-j4vmraac9w
-
MD5
b43a337eaf7202c3e2f9e344d42fb9d5
-
SHA1
c26f387ee032b6140c742273b40bc55cd65ade05
-
SHA256
dada32cbd82318063d5af1f11e8a8a510102fa129d2caba30bf2c04810b1576c
-
SHA512
5190c601ec41f025f66d12a22161430d8568bb4faf34691082ed09bde730777854a168334d704584d8392af50ddd3ba3ef96ec62eb1040f7dee7a71b8d1dcab0
-
SSDEEP
24576:mFxS0wzdHOzWJnUrdQnTkJ1Ru9SxT+mJDz6yd/9pnrwA/d6s:0SLzdHisCdIQ3Ru9g3Bm+lKUd
Static task
static1
Behavioral task
behavioral1
Sample
b43a337eaf7202c3e2f9e344d42fb9d5.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
b43a337eaf7202c3e2f9e344d42fb9d5.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
b43a337eaf7202c3e2f9e344d42fb9d5
-
Size
1.7MB
-
MD5
b43a337eaf7202c3e2f9e344d42fb9d5
-
SHA1
c26f387ee032b6140c742273b40bc55cd65ade05
-
SHA256
dada32cbd82318063d5af1f11e8a8a510102fa129d2caba30bf2c04810b1576c
-
SHA512
5190c601ec41f025f66d12a22161430d8568bb4faf34691082ed09bde730777854a168334d704584d8392af50ddd3ba3ef96ec62eb1040f7dee7a71b8d1dcab0
-
SSDEEP
24576:mFxS0wzdHOzWJnUrdQnTkJ1Ru9SxT+mJDz6yd/9pnrwA/d6s:0SLzdHisCdIQ3Ru9g3Bm+lKUd
Score8/10-
Modifies Installed Components in the registry
-
Deletes itself
-
Executes dropped EXE
-
Identifies Wine through registry keys
Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.
-
Loads dropped DLL
-
Adds Run key to start application
-
Drops file in System32 directory
-