1001f4156ff9eb0cef25a623b270e79ff05d2941e2c675430f5b1809409d6725 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1001f4156ff9eb0cef25a623b270e79ff05d2941e2c675430f5b1809409d6725
Size

121KB
Sample

230607-1fkw3sgf91
MD5

501beb3b6e4d768c9268522de44558c0
SHA1

be8fc2327899407f9c34df7bc58211c2ed4fee6d
SHA256

1001f4156ff9eb0cef25a623b270e79ff05d2941e2c675430f5b1809409d6725
SHA512

2703530dfddae1b9bfc0c76390a84bfa6b557d3fb668444a0d9f67bf8eebe2ef835bbee7141e73199354f77f03dafaa23a11675981ec79ded2d34d8eff95e968
SSDEEP

3072:89QLdsON8xxwaTq29LfB5PLfWva8oyhuWVFrag1shbRrtvx:uQLvN8VT15bWVFmZh9rt

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  1001f4156ff9eb0cef25a623b270e79ff05d2941e2c675430f5b1809409d6725
- Size
  
  121KB
- MD5
  
  501beb3b6e4d768c9268522de44558c0
- SHA1
  
  be8fc2327899407f9c34df7bc58211c2ed4fee6d
- SHA256
  
  1001f4156ff9eb0cef25a623b270e79ff05d2941e2c675430f5b1809409d6725
- SHA512
  
  2703530dfddae1b9bfc0c76390a84bfa6b557d3fb668444a0d9f67bf8eebe2ef835bbee7141e73199354f77f03dafaa23a11675981ec79ded2d34d8eff95e968
- SSDEEP
  
  3072:89QLdsON8xxwaTq29LfB5PLfWva8oyhuWVFrag1shbRrtvx:uQLvN8VT15bWVFmZh9rt
Score

10^/10

evasion trojan
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1