0b5929e439a9058edae93c42140c82e4720db2e15f2efff2d5300c97016d7ebb | Triage

Sharing

General

Target

0b5929e439a9058edae93c42140c82e4720db2e15f2efff2d5300c97016d7ebb
Size

101KB
Sample

230607-pzxt7saf38
MD5

b999649766535cd6e22211338fc42f93
SHA1

2af995bf43c015375e7fe6b170997f748b95e709
SHA256

0b5929e439a9058edae93c42140c82e4720db2e15f2efff2d5300c97016d7ebb
SHA512

1f26e7ba5045af3df0d1bb3b8f2e8ba26bb802aa4e3720a27d6577696deec035b59efa35011345e51d6a10c0028e471783dd6e0deccfe5655966e30f55a5dc15
SSDEEP

1536:ifp6kE69sL+kPINN+gB75eGFiqp525ynX9di2YDHLYjzDm:AVht1iS5iy3xYDHcj/

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  0b5929e439a9058edae93c42140c82e4720db2e15f2efff2d5300c97016d7ebb
- Size
  
  101KB
- MD5
  
  b999649766535cd6e22211338fc42f93
- SHA1
  
  2af995bf43c015375e7fe6b170997f748b95e709
- SHA256
  
  0b5929e439a9058edae93c42140c82e4720db2e15f2efff2d5300c97016d7ebb
- SHA512
  
  1f26e7ba5045af3df0d1bb3b8f2e8ba26bb802aa4e3720a27d6577696deec035b59efa35011345e51d6a10c0028e471783dd6e0deccfe5655966e30f55a5dc15
- SSDEEP
  
  1536:ifp6kE69sL+kPINN+gB75eGFiqp525ynX9di2YDHLYjzDm:AVht1iS5iy3xYDHcj/
Score

10^/10

evasion trojan
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1