5fd16988aaae01dc016b962d5bde6de6522fd39d8357bbbd5b86303737012153 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5fd16988aaae01dc016b962d5bde6de6522fd39d8357bbbd5b86303737012153
Size

6.5MB
Sample

240314-ytb5zsdg3s
MD5

7aad9462ee9f266206bf2116fcd9efff
SHA1

a297a64ee4d9d9dd64929ab88ab31e14f474a731
SHA256

5fd16988aaae01dc016b962d5bde6de6522fd39d8357bbbd5b86303737012153
SHA512

010c0e137ce89010ceccdf7f52037817925bfde6de7cf82bbf0cf155a90b5389959bd3eb5502b4f2fcc893d405ed6d65e191f2ef6ed56359fc873fddfe465ae3
SSDEEP

98304:jaCXCxqJsrFw4f7dm3qRRaHHZBz0GWD602BjRDvmccfIFI9:ja+srUwaHHZBz0GWD6tB1Occ

Score

7^/10

evasion

Malware Config

Targets

- Target
  
  5fd16988aaae01dc016b962d5bde6de6522fd39d8357bbbd5b86303737012153
- Size
  
  6.5MB
- MD5
  
  7aad9462ee9f266206bf2116fcd9efff
- SHA1
  
  a297a64ee4d9d9dd64929ab88ab31e14f474a731
- SHA256
  
  5fd16988aaae01dc016b962d5bde6de6522fd39d8357bbbd5b86303737012153
- SHA512
  
  010c0e137ce89010ceccdf7f52037817925bfde6de7cf82bbf0cf155a90b5389959bd3eb5502b4f2fcc893d405ed6d65e191f2ef6ed56359fc873fddfe465ae3
- SSDEEP
  
  98304:jaCXCxqJsrFw4f7dm3qRRaHHZBz0GWD602BjRDvmccfIFI9:ja+srUwaHHZBz0GWD6tB1Occ
Score

7^/10

evasion
- Identifies Wine through registry keys
  Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Virtualization/Sandbox Evasion

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2