General
-
Target
chthonic_2.0.5.0.vir
-
Size
88KB
-
Sample
200719-bqwf517pgn
-
MD5
77b42fb633369de146785c83270bb289
-
SHA1
db21636a6e3784701cd41ffa60398a5f110cec10
-
SHA256
52d821d8e86473f0a69a044741e9f64b68a4f1677a298f292a560aae740f286c
-
SHA512
99be184430c0d1d0d078cf27fbed9936fe533b1e980d320467af6d9d8073ce1ce89c50be8e4f8ee571e910d25596b87cccb839cbcc774e350d6b2a5715da39cf
Static task
static1
Behavioral task
behavioral1
Sample
chthonic_2.0.5.0.vir.exe
Resource
win7v200430
Behavioral task
behavioral2
Sample
chthonic_2.0.5.0.vir.exe
Resource
win10v200430
Malware Config
Targets
-
-
Target
chthonic_2.0.5.0.vir
-
Size
88KB
-
MD5
77b42fb633369de146785c83270bb289
-
SHA1
db21636a6e3784701cd41ffa60398a5f110cec10
-
SHA256
52d821d8e86473f0a69a044741e9f64b68a4f1677a298f292a560aae740f286c
-
SHA512
99be184430c0d1d0d078cf27fbed9936fe533b1e980d320467af6d9d8073ce1ce89c50be8e4f8ee571e910d25596b87cccb839cbcc774e350d6b2a5715da39cf
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Adds policy Run key to start application
-
Blacklisted process makes network request
-
Disables taskbar notifications via registry modification
-
Identifies Wine through registry keys
Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.
-