6eeb06c91edeec1cedce84e8b44cc166d19526979fcb92c849670ac5d9e19b98 | Triage

Sharing

General

Target

6eeb06c91edeec1cedce84e8b44cc166d19526979fcb92c849670ac5d9e19b98
Size

100KB
Sample

230607-s7alesda3y
MD5

4c67eafc45d44f3f4296c0b99722cdf9
SHA1

928898bb5e0c72e06b8fcb8186e00e0bb9a827c6
SHA256

6eeb06c91edeec1cedce84e8b44cc166d19526979fcb92c849670ac5d9e19b98
SHA512

da1b71aad9e37ea1ce0ca72cdf9d6ea7b2e426151987dc30e14a65b6b75ade9917e280f5e5686c55de0e7986532313039be5de038acc0bd1c2591c1ae3323855
SSDEEP

1536:3p6kFya9c7Ok/YNQidgB75eGFwiojyXX9di2YTHLYjzDm:5VBQ51wiojyHxYTHcj/

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  6eeb06c91edeec1cedce84e8b44cc166d19526979fcb92c849670ac5d9e19b98
- Size
  
  100KB
- MD5
  
  4c67eafc45d44f3f4296c0b99722cdf9
- SHA1
  
  928898bb5e0c72e06b8fcb8186e00e0bb9a827c6
- SHA256
  
  6eeb06c91edeec1cedce84e8b44cc166d19526979fcb92c849670ac5d9e19b98
- SHA512
  
  da1b71aad9e37ea1ce0ca72cdf9d6ea7b2e426151987dc30e14a65b6b75ade9917e280f5e5686c55de0e7986532313039be5de038acc0bd1c2591c1ae3323855
- SSDEEP
  
  1536:3p6kFya9c7Ok/YNQidgB75eGFwiojyXX9di2YTHLYjzDm:5VBQ51wiojyHxYTHcj/
Score

10^/10

evasion trojan
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1