a43d085ff0f9d4e5e07c4a756bc0f24df0ca751155fe43a613890dc63bb6451f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a43d085ff0f9d4e5e07c4a756bc0f24df0ca751155fe43a613890dc63bb6451f
Size

100KB
Sample

230607-rf3bpaca2v
MD5

49a123d0a1e80021dac2eba763181152
SHA1

a08479876030946bb5baac3b3fdebc94309ff87d
SHA256

a43d085ff0f9d4e5e07c4a756bc0f24df0ca751155fe43a613890dc63bb6451f
SHA512

46aa4ce5d5d4f3ba796ffa0ec799d2e10a82579d5fed088e4696d90f23df98921b715e668931f9b959b350c9e6af0af7fa6af2b626cc86986b1a955898176c00
SSDEEP

1536:Hp6kFya9c7Ok/YNQFgB75eGFVDCXjyXX9di2YTHLYjzDm:JVBQa1NCXjyHxYTHcj/

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  a43d085ff0f9d4e5e07c4a756bc0f24df0ca751155fe43a613890dc63bb6451f
- Size
  
  100KB
- MD5
  
  49a123d0a1e80021dac2eba763181152
- SHA1
  
  a08479876030946bb5baac3b3fdebc94309ff87d
- SHA256
  
  a43d085ff0f9d4e5e07c4a756bc0f24df0ca751155fe43a613890dc63bb6451f
- SHA512
  
  46aa4ce5d5d4f3ba796ffa0ec799d2e10a82579d5fed088e4696d90f23df98921b715e668931f9b959b350c9e6af0af7fa6af2b626cc86986b1a955898176c00
- SSDEEP
  
  1536:Hp6kFya9c7Ok/YNQFgB75eGFVDCXjyXX9di2YTHLYjzDm:JVBQa1NCXjyHxYTHcj/
Score

10^/10

evasion trojan
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1