Overview

overview

7

Static

static

3

ce193e83de...ea.exe

windows7-x64

7

ce193e83de...ea.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ce193e83de60c392eb7846e9640f9369ff1d33407f4c182ccb4292ccd676b6ea

  • Size

    316KB

  • Sample

    240425-fhdwbsff86

  • MD5

    f8f2161a36b0e69d24934f33f2371747

  • SHA1

    0ad42f2f178a37f21d68c12449cbd0126605a5ce

  • SHA256

    ce193e83de60c392eb7846e9640f9369ff1d33407f4c182ccb4292ccd676b6ea

  • SHA512

    58bbabac1dbbb04d3b7ca2a9595732e44e96f1ed2de454973a8b6bcb2c01e5cc3b512bcb77791322b59225045c246a0a5a45fafbe3463e6fd502554b5410ebd8

  • SSDEEP

    3072:wNKDGqyLe/7BTMJklZ7ShT+XUrtsHj0X+Zdn2AJqP/MZpJrPktp1WQx:lDRQk7BTMJyZ+hT+lD0XYpkd13

Score
7/10
evasion

Malware Config

Targets

    • Target

      ce193e83de60c392eb7846e9640f9369ff1d33407f4c182ccb4292ccd676b6ea

    • Size

      316KB

    • MD5

      f8f2161a36b0e69d24934f33f2371747

    • SHA1

      0ad42f2f178a37f21d68c12449cbd0126605a5ce

    • SHA256

      ce193e83de60c392eb7846e9640f9369ff1d33407f4c182ccb4292ccd676b6ea

    • SHA512

      58bbabac1dbbb04d3b7ca2a9595732e44e96f1ed2de454973a8b6bcb2c01e5cc3b512bcb77791322b59225045c246a0a5a45fafbe3463e6fd502554b5410ebd8

    • SSDEEP

      3072:wNKDGqyLe/7BTMJklZ7ShT+XUrtsHj0X+Zdn2AJqP/MZpJrPktp1WQx:lDRQk7BTMJyZ+hT+lD0XYpkd13

    Score
    7/10
    evasion

    • Identifies Wine through registry keys

      Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.

      evasion
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

1
T1497

Credential Access

Discovery

Query Registry

1
T1012

Virtualization/Sandbox Evasion

1
T1497

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks