ac8b28c0ebcfdd49531171fafe1b75b04ee79f81ebc7afee9a4f68b4164a1941 | Triage

Sharing

General

Target

ac8b28c0ebcfdd49531171fafe1b75b04ee79f81ebc7afee9a4f68b4164a1941
Size

101KB
Sample

230607-tdr42sdb2v
MD5

e1bfd4d49208b42095fc5125cffe8c4f
SHA1

393e27ae0fd1c5b8ce59809a6902215ec63e79cc
SHA256

ac8b28c0ebcfdd49531171fafe1b75b04ee79f81ebc7afee9a4f68b4164a1941
SHA512

35ba19b2f1501d78cf4306c2852dfb4731be67323f1116d6faa380c87e91fe82aaa4a9d0de0c7c98bfc8fb27271a2a44d646d6f44641aa6bffcbd8df2be05d4d
SSDEEP

1536:efp6kE69sL+kPINzgB75eGF7qp5+5ynX9di2YDHLYjzDm:cVhE17S5Ky3xYDHcj/

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  ac8b28c0ebcfdd49531171fafe1b75b04ee79f81ebc7afee9a4f68b4164a1941
- Size
  
  101KB
- MD5
  
  e1bfd4d49208b42095fc5125cffe8c4f
- SHA1
  
  393e27ae0fd1c5b8ce59809a6902215ec63e79cc
- SHA256
  
  ac8b28c0ebcfdd49531171fafe1b75b04ee79f81ebc7afee9a4f68b4164a1941
- SHA512
  
  35ba19b2f1501d78cf4306c2852dfb4731be67323f1116d6faa380c87e91fe82aaa4a9d0de0c7c98bfc8fb27271a2a44d646d6f44641aa6bffcbd8df2be05d4d
- SSDEEP
  
  1536:efp6kE69sL+kPINzgB75eGF7qp5+5ynX9di2YDHLYjzDm:cVhE17S5Ky3xYDHcj/
Score

10^/10

evasion trojan
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1