110274f4df9b28c01eb30b5046ff4a7ae9504049368fc8f52b1db1eded11f3bd | Triage

Sharing

Copy URL Twitter E-mail

General

Target

110274f4df9b28c01eb30b5046ff4a7ae9504049368fc8f52b1db1eded11f3bd
Size

101KB
Sample

230607-pla4aaah21
MD5

c8c9d50fab8ce0d073b8c0fa21e404eb
SHA1

33b270b5c3b1b30babfb01b47535e98a637c1ef3
SHA256

110274f4df9b28c01eb30b5046ff4a7ae9504049368fc8f52b1db1eded11f3bd
SHA512

859aafd5d8ec71f15b8f7279ae5a915277ba95382f446ac293362921641201e8f1295dd3fd951a1e6e136059c01786b26541374582225cabf88ee9d9919befa8
SSDEEP

1536:ifp6kE69sL+kPINN+gB75eGFiqp525ynX9di2YDHLYjzDm:AVht1iS5iy3xYDHcj/

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  110274f4df9b28c01eb30b5046ff4a7ae9504049368fc8f52b1db1eded11f3bd
- Size
  
  101KB
- MD5
  
  c8c9d50fab8ce0d073b8c0fa21e404eb
- SHA1
  
  33b270b5c3b1b30babfb01b47535e98a637c1ef3
- SHA256
  
  110274f4df9b28c01eb30b5046ff4a7ae9504049368fc8f52b1db1eded11f3bd
- SHA512
  
  859aafd5d8ec71f15b8f7279ae5a915277ba95382f446ac293362921641201e8f1295dd3fd951a1e6e136059c01786b26541374582225cabf88ee9d9919befa8
- SSDEEP
  
  1536:ifp6kE69sL+kPINN+gB75eGFiqp525ynX9di2YDHLYjzDm:AVht1iS5iy3xYDHcj/
Score

10^/10

evasion trojan
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1