b38af14f5dc0ea634ca5a243c87de898a6296b6d182b638017e6715bb55659ba | Triage

Sharing

General

Target

07324499.exe
Size

100KB
Sample

230607-pdhhdsaf8z
MD5

75e3cb035b131fd6624e9b66ea415a11
SHA1

31b1954bfa557b26638963616b2f72dc7e8a2dad
SHA256

b38af14f5dc0ea634ca5a243c87de898a6296b6d182b638017e6715bb55659ba
SHA512

3d7aee5670e3f1d991ae4d040f2e5bb39ff0d9f4cda60f0a4609bff2b8d865b8ee0ee6b8ec023a052b68e6b9092b6cd7cf06780f14f749e9a153180db1cb7a95
SSDEEP

1536:mp6kFya9c7Ok/YNQjgB75eGFILiSPjyXX9di2YTHLYjzDm:eVBQU1UiSPjyHxYTHcj/

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  07324499.exe
- Size
  
  100KB
- MD5
  
  75e3cb035b131fd6624e9b66ea415a11
- SHA1
  
  31b1954bfa557b26638963616b2f72dc7e8a2dad
- SHA256
  
  b38af14f5dc0ea634ca5a243c87de898a6296b6d182b638017e6715bb55659ba
- SHA512
  
  3d7aee5670e3f1d991ae4d040f2e5bb39ff0d9f4cda60f0a4609bff2b8d865b8ee0ee6b8ec023a052b68e6b9092b6cd7cf06780f14f749e9a153180db1cb7a95
- SSDEEP
  
  1536:mp6kFya9c7Ok/YNQjgB75eGFILiSPjyXX9di2YTHLYjzDm:eVBQU1UiSPjyHxYTHcj/
Score

10^/10

evasion trojan
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2