abfc265789c859019b8ac164aa360c9a16d76d307b228b8c254b54b3473284e0 | Triage

Sharing

General

Target

abfc265789c859019b8ac164aa360c9a16d76d307b228b8c254b54b3473284e0
Size

100KB
Sample

230607-rmfq9sbe86
MD5

992ddc5b1e779f86695a406f0f26b507
SHA1

207cda4e3de8ffe645b32dbae98e6cd1f6647809
SHA256

abfc265789c859019b8ac164aa360c9a16d76d307b228b8c254b54b3473284e0
SHA512

8c4d2a8c3b60efceba4acda40c8ccb0cf72a0c36e91ba0a5139c611a5f7bff79013da7358ecd7a00f784a72804f33bbab3a687b104e7a37e0ef0b57bf10aae9b
SSDEEP

1536:lp6kFya9c7Ok/YNQ1mHgB75eGFJBCjjyXX9di2YTHLYjzDm:vVBQMw1JBCjjyHxYTHcj/

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  abfc265789c859019b8ac164aa360c9a16d76d307b228b8c254b54b3473284e0
- Size
  
  100KB
- MD5
  
  992ddc5b1e779f86695a406f0f26b507
- SHA1
  
  207cda4e3de8ffe645b32dbae98e6cd1f6647809
- SHA256
  
  abfc265789c859019b8ac164aa360c9a16d76d307b228b8c254b54b3473284e0
- SHA512
  
  8c4d2a8c3b60efceba4acda40c8ccb0cf72a0c36e91ba0a5139c611a5f7bff79013da7358ecd7a00f784a72804f33bbab3a687b104e7a37e0ef0b57bf10aae9b
- SSDEEP
  
  1536:lp6kFya9c7Ok/YNQ1mHgB75eGFJBCjjyXX9di2YTHLYjzDm:vVBQMw1JBCjjyHxYTHcj/
Score

10^/10

evasion trojan
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1