8f78376c0cce1800fd7b008910d787bef2b7555f228c643939342e404bdaa3c9 | Triage

Sharing

General

Target

8f78376c0cce1800fd7b008910d787bef2b7555f228c643939342e404bdaa3c9
Size

121KB
Sample

230607-1ab2zsgf4s
MD5

9984149baeea3ee72a110cb80e51e7e1
SHA1

1d61403e651d75048757af37bdec27a1c09141b5
SHA256

8f78376c0cce1800fd7b008910d787bef2b7555f228c643939342e404bdaa3c9
SHA512

a61fd60b98d4163ef18e1ee0c49b1074aaaf03fbf277f2eaf04735a34d4dd2f77fd419a97fb23ebb5c327a617883b8cb748140e259d46dbf6b7f9633aaabd03b
SSDEEP

3072:59QLdsON8xxwaTq29L309yVzLfWvL8oyhuWVFrag1shbortvx:vQLvN8VTtVIWVFmZhMrt

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  8f78376c0cce1800fd7b008910d787bef2b7555f228c643939342e404bdaa3c9
- Size
  
  121KB
- MD5
  
  9984149baeea3ee72a110cb80e51e7e1
- SHA1
  
  1d61403e651d75048757af37bdec27a1c09141b5
- SHA256
  
  8f78376c0cce1800fd7b008910d787bef2b7555f228c643939342e404bdaa3c9
- SHA512
  
  a61fd60b98d4163ef18e1ee0c49b1074aaaf03fbf277f2eaf04735a34d4dd2f77fd419a97fb23ebb5c327a617883b8cb748140e259d46dbf6b7f9633aaabd03b
- SSDEEP
  
  3072:59QLdsON8xxwaTq29L309yVzLfWvL8oyhuWVFrag1shbortvx:vQLvN8VTtVIWVFmZhMrt
Score

10^/10

evasion trojan
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1