0d1f8f26b126e682488f7a938cb4b498dee028899b812f8967894bbb549d791e | Triage

Sharing

General

Target

0d1f8f26b126e682488f7a938cb4b498dee028899b812f8967894bbb549d791e
Size

101KB
Sample

230607-pf6b8sac36
MD5

cf21afdd77305bdcbd4ffb7a692f91c0
SHA1

709fedb3d5a7424e2147f2721a3ab2e9ee2f8884
SHA256

0d1f8f26b126e682488f7a938cb4b498dee028899b812f8967894bbb549d791e
SHA512

054e7ef0534615fb4a8c8deeacc5c0377960fbc51050853f19ba9b4e6d48ed81ebed4119a26301daff2e12855ec93c1900c584e15327f9663cd9eae281bdae98
SSDEEP

1536:Pvp6kE69sL+kPINaRgB75eGFQap5i5ynX9di2YDHLYjzDm:pVhaO1QC5my3xYDHcj/

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  0d1f8f26b126e682488f7a938cb4b498dee028899b812f8967894bbb549d791e
- Size
  
  101KB
- MD5
  
  cf21afdd77305bdcbd4ffb7a692f91c0
- SHA1
  
  709fedb3d5a7424e2147f2721a3ab2e9ee2f8884
- SHA256
  
  0d1f8f26b126e682488f7a938cb4b498dee028899b812f8967894bbb549d791e
- SHA512
  
  054e7ef0534615fb4a8c8deeacc5c0377960fbc51050853f19ba9b4e6d48ed81ebed4119a26301daff2e12855ec93c1900c584e15327f9663cd9eae281bdae98
- SSDEEP
  
  1536:Pvp6kE69sL+kPINaRgB75eGFQap5i5ynX9di2YDHLYjzDm:pVhaO1QC5my3xYDHcj/
Score

10^/10

evasion trojan
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1