22003447ce917c20b3fb0d3115ba8c4a4ecf47d91c03d462ead1efe093b0e5b4 | Triage

Sharing

General

Target

22003447ce917c20b3fb0d3115ba8c4a4ecf47d91c03d462ead1efe093b0e5b4
Size

121KB
Sample

230607-3h9dkahg2y
MD5

da90738ff7f8122dd95c72849d9c97e6
SHA1

b8581dff4ae20750ea393771ab2401e6d26c6793
SHA256

22003447ce917c20b3fb0d3115ba8c4a4ecf47d91c03d462ead1efe093b0e5b4
SHA512

687b4848b9a2e4781aaebebfdffe03b8566cb890c5eba79f0e962fdb1bea1afb64baa07eba3a7f960749bfd17a6fafc6ff61e545c267b2a52705689a640c1620
SSDEEP

3072:09QLdsON8xxwaTq29LUYGzwfXLfWvy8oyhuWVFrag1shbRrtvx:GQLvN8VTGzwfTWVFmZhtrt

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  22003447ce917c20b3fb0d3115ba8c4a4ecf47d91c03d462ead1efe093b0e5b4
- Size
  
  121KB
- MD5
  
  da90738ff7f8122dd95c72849d9c97e6
- SHA1
  
  b8581dff4ae20750ea393771ab2401e6d26c6793
- SHA256
  
  22003447ce917c20b3fb0d3115ba8c4a4ecf47d91c03d462ead1efe093b0e5b4
- SHA512
  
  687b4848b9a2e4781aaebebfdffe03b8566cb890c5eba79f0e962fdb1bea1afb64baa07eba3a7f960749bfd17a6fafc6ff61e545c267b2a52705689a640c1620
- SSDEEP
  
  3072:09QLdsON8xxwaTq29LUYGzwfXLfWvy8oyhuWVFrag1shbRrtvx:GQLvN8VTGzwfTWVFmZhtrt
Score

10^/10

evasion trojan
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1