General

  • Target

    69d8474303a44d093efcfc5a5ec59a7916d934e66224a87b991d405fa75bb0ca

  • Size

    3.0MB

  • Sample

    240403-wenjcsgc2w

  • MD5

    31ef08b5ca523523aa597babb8a4e621

  • SHA1

    976aa81300ad32b16020e4f1b3fa53279311f9cd

  • SHA256

    69d8474303a44d093efcfc5a5ec59a7916d934e66224a87b991d405fa75bb0ca

  • SHA512

    68778cddea4cd37b30b45bc8bfe117aa9051dea86349f54605962ba0b4ae50f30e78b33a84aba2bfcfe2ae1e38646d43cc3df3ca0fb7e1a4f46bd8c10612d822

  • SSDEEP

    49152:aelDvh9E+4dCUMutnwMCJWC3X8oVUVOhEiZd2:aSLhb4dCUMgnwMCL3PhEm

Score
10/10

Malware Config

Targets

    • Target

      69d8474303a44d093efcfc5a5ec59a7916d934e66224a87b991d405fa75bb0ca

    • Size

      3.0MB

    • MD5

      31ef08b5ca523523aa597babb8a4e621

    • SHA1

      976aa81300ad32b16020e4f1b3fa53279311f9cd

    • SHA256

      69d8474303a44d093efcfc5a5ec59a7916d934e66224a87b991d405fa75bb0ca

    • SHA512

      68778cddea4cd37b30b45bc8bfe117aa9051dea86349f54605962ba0b4ae50f30e78b33a84aba2bfcfe2ae1e38646d43cc3df3ca0fb7e1a4f46bd8c10612d822

    • SSDEEP

      49152:aelDvh9E+4dCUMutnwMCJWC3X8oVUVOhEiZd2:aSLhb4dCUMgnwMCL3PhEm

    Score
    10/10
    • RisePro

      RisePro stealer is an infostealer distributed by PrivateLoader.

    • Identifies VirtualBox via ACPI registry values (likely anti-VM)

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Identifies Wine through registry keys

      Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.

MITRE ATT&CK Enterprise v15

Tasks