5f50eca886390346c53df179ff22b4ee7e7898eb85f193ec19c940bd6cf593f8 | Triage

Sharing

General

Target

5f50eca886390346c53df179ff22b4ee7e7898eb85f193ec19c940bd6cf593f8
Size

121KB
Sample

230607-2sljtahd4t
MD5

7f06da627e908da3270c5d75d0344160
SHA1

a12df7cddeb6e17b086575a5354ddb3293b9d5c0
SHA256

5f50eca886390346c53df179ff22b4ee7e7898eb85f193ec19c940bd6cf593f8
SHA512

5bdecee4256d456f414f74293c3f8cef7de49c723c33cc0bb0f4dc9704fe5d6a29904a65b047f3ca9b227574bdb06bcdfac043975c056c1041ec9d148a4364dc
SSDEEP

3072:L9QLdsON8xxwaTq29Li+scTLfWvF8oyhuWVFrag1shb4rtvx:5QLvN8VTXsciWVFmZhcrt

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  5f50eca886390346c53df179ff22b4ee7e7898eb85f193ec19c940bd6cf593f8
- Size
  
  121KB
- MD5
  
  7f06da627e908da3270c5d75d0344160
- SHA1
  
  a12df7cddeb6e17b086575a5354ddb3293b9d5c0
- SHA256
  
  5f50eca886390346c53df179ff22b4ee7e7898eb85f193ec19c940bd6cf593f8
- SHA512
  
  5bdecee4256d456f414f74293c3f8cef7de49c723c33cc0bb0f4dc9704fe5d6a29904a65b047f3ca9b227574bdb06bcdfac043975c056c1041ec9d148a4364dc
- SSDEEP
  
  3072:L9QLdsON8xxwaTq29Li+scTLfWvF8oyhuWVFrag1shb4rtvx:5QLvN8VTXsciWVFmZhcrt
Score

10^/10

evasion trojan
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1