9d73b6ecafc44a213250ee63b45746f9a2194ddc6f48540b18deb15ca3af7fc8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ea22a746a7d057b10841b9216e8203fd_JaffaCakes118
Size

371KB
Sample

240409-q6v5maca6x
MD5

ea22a746a7d057b10841b9216e8203fd
SHA1

a82297efab055dc9b31e74317bb86a01e0405862
SHA256

9d73b6ecafc44a213250ee63b45746f9a2194ddc6f48540b18deb15ca3af7fc8
SHA512

f4dcbc4bd069c69d1a7f4c30534da864707eac203c1e923794b91c3117719fa7b017c47560cdf8c784495e2739955e6efb17fb6ebbeb750a1bba4e20252e823a
SSDEEP

6144:eeAc72iMSgZyhfKX75T2iCMAmrmq5FUSfr87sgapkn4LJ1OX5/:eeZ7rl0D5aiTtymG9alLJ1y5/

Score

7^/10

aspackv2 evasion

Malware Config

Targets

- Target
  
  ea22a746a7d057b10841b9216e8203fd_JaffaCakes118
- Size
  
  371KB
- MD5
  
  ea22a746a7d057b10841b9216e8203fd
- SHA1
  
  a82297efab055dc9b31e74317bb86a01e0405862
- SHA256
  
  9d73b6ecafc44a213250ee63b45746f9a2194ddc6f48540b18deb15ca3af7fc8
- SHA512
  
  f4dcbc4bd069c69d1a7f4c30534da864707eac203c1e923794b91c3117719fa7b017c47560cdf8c784495e2739955e6efb17fb6ebbeb750a1bba4e20252e823a
- SSDEEP
  
  6144:eeAc72iMSgZyhfKX75T2iCMAmrmq5FUSfr87sgapkn4LJ1OX5/:eeZ7rl0D5aiTtymG9alLJ1y5/
Score

7^/10

evasion
- Identifies Wine through registry keys
  Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

Credential Access

Discovery

Query Registry

Virtualization/Sandbox Evasion

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2