e68e2bf34febdbfc2049fcd31a4311a73e634b0001d4e3437f85f305e27b5535 | Triage

Sharing

General

Target

bb55cba6b935784165ec50b618763cb9
Size

1.8MB
Sample

240308-qbhaaage81
MD5

bb55cba6b935784165ec50b618763cb9
SHA1

c49b603b98c2e1c1c52b99d323eb2d3d2b06d249
SHA256

e68e2bf34febdbfc2049fcd31a4311a73e634b0001d4e3437f85f305e27b5535
SHA512

c21bfca818a32e34b57437d5431f793eef491d1ecfac357aa6f950438d4c98487d8375fb36b674faf431928de3bbf70b900953f1f9257ad3559a1d3a7e8090c7
SSDEEP

49152:JOmo6jiO77ylb0vUy3RWBCWRO5ip6xdkohDP:3iO7W9QWrRYipboJ

Score

7^/10

evasion

Malware Config

Targets

- Target
  
  bb55cba6b935784165ec50b618763cb9
- Size
  
  1.8MB
- MD5
  
  bb55cba6b935784165ec50b618763cb9
- SHA1
  
  c49b603b98c2e1c1c52b99d323eb2d3d2b06d249
- SHA256
  
  e68e2bf34febdbfc2049fcd31a4311a73e634b0001d4e3437f85f305e27b5535
- SHA512
  
  c21bfca818a32e34b57437d5431f793eef491d1ecfac357aa6f950438d4c98487d8375fb36b674faf431928de3bbf70b900953f1f9257ad3559a1d3a7e8090c7
- SSDEEP
  
  49152:JOmo6jiO77ylb0vUy3RWBCWRO5ip6xdkohDP:3iO7W9QWrRYipboJ
Score

7^/10

evasion
- Identifies Wine through registry keys
  Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

Credential Access

Discovery

Query Registry

Virtualization/Sandbox Evasion

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2