b115d88c802dc349b9dc7e1333eba2f4c1e73911a12dcc3a4902e56e0a00fa43 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

windows-loader-by-daz.exe
Size

1.7MB
Sample

240616-reyl4swcqc
MD5

6bba22b8fb1da7e921e94d99f0a511c8
SHA1

fa336bcbd2854982cb990635395fd796057ab767
SHA256

b115d88c802dc349b9dc7e1333eba2f4c1e73911a12dcc3a4902e56e0a00fa43
SHA512

aad2654d4a30ed344f0e55e5d245b1351846769edb82dd36ffac4db66bdb567f9aa87bca32ec04d50f7b753a0e8cbb462943112a9a99f26ff4e907d278cb14d4
SSDEEP

24576:vVckxh+XPjAb0lfwYoetuk+SXz9YxojZlfdkY8AvryvcO4zsAvI5s:vVckx8XUgNxt+SXz+xuwATyvcO4zsAQy

Score

7^/10

evasion

Malware Config

Targets

- Target
  
  windows-loader-by-daz.exe
- Size
  
  1.7MB
- MD5
  
  6bba22b8fb1da7e921e94d99f0a511c8
- SHA1
  
  fa336bcbd2854982cb990635395fd796057ab767
- SHA256
  
  b115d88c802dc349b9dc7e1333eba2f4c1e73911a12dcc3a4902e56e0a00fa43
- SHA512
  
  aad2654d4a30ed344f0e55e5d245b1351846769edb82dd36ffac4db66bdb567f9aa87bca32ec04d50f7b753a0e8cbb462943112a9a99f26ff4e907d278cb14d4
- SSDEEP
  
  24576:vVckxh+XPjAb0lfwYoetuk+SXz9YxojZlfdkY8AvryvcO4zsAvI5s:vVckx8XUgNxt+SXz+xuwATyvcO4zsAQy
Score

7^/10

evasion
- Identifies Wine through registry keys
  Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

Credential Access

Discovery

Query Registry

Virtualization/Sandbox Evasion

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2