09765c9d5a82074756dda7dd16bd877c25832c1498de60884dfb75ab8b7e442d | Triage

Sharing

General

Target

09765c9d5a82074756dda7dd16bd877c25832c1498de60884dfb75ab8b7e442d
Size

102KB
Sample

230607-qdzbksbc9v
MD5

929fc6bbcb7dc5f803d909f859e647ee
SHA1

8ff359dc8efb08a6d843a2d5688bb63a8bf2741e
SHA256

09765c9d5a82074756dda7dd16bd877c25832c1498de60884dfb75ab8b7e442d
SHA512

b16afbcfcda65f1b6b5b5aa43f88b89b92a4034af2c62841e33af9c9e6a369a5d2542321454d1b17bc9628b40fd58d26b5f3c08e4a7cb8b3f939fef45df5275c
SSDEEP

1536:ifp6kE69sL+kPINN+gB75eGFiqp525ynX9di2YDHLYjzDm:AVht1iS5iy3xYDHcj/

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  09765c9d5a82074756dda7dd16bd877c25832c1498de60884dfb75ab8b7e442d
- Size
  
  102KB
- MD5
  
  929fc6bbcb7dc5f803d909f859e647ee
- SHA1
  
  8ff359dc8efb08a6d843a2d5688bb63a8bf2741e
- SHA256
  
  09765c9d5a82074756dda7dd16bd877c25832c1498de60884dfb75ab8b7e442d
- SHA512
  
  b16afbcfcda65f1b6b5b5aa43f88b89b92a4034af2c62841e33af9c9e6a369a5d2542321454d1b17bc9628b40fd58d26b5f3c08e4a7cb8b3f939fef45df5275c
- SSDEEP
  
  1536:ifp6kE69sL+kPINN+gB75eGFiqp525ynX9di2YDHLYjzDm:AVht1iS5iy3xYDHcj/
Score

10^/10

evasion trojan
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1