52019ae3429de75c9cfabbefc004d42b80c633351ac75ecbb234fd6ed4394335 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

52019ae3429de75c9cfabbefc004d42b80c633351ac75ecbb234fd6ed4394335
Size

100KB
Sample

230607-texqxsdb3y
MD5

d248527c8be633f6421aa24d0ccf7ff7
SHA1

01caa10aa510430916963db66304ccf9fd4c6da0
SHA256

52019ae3429de75c9cfabbefc004d42b80c633351ac75ecbb234fd6ed4394335
SHA512

b8aa4dfba807d7319a79616bf7b0a2453f67709650175ad174e86b601d0fd9b130342ac0fe42e9c96fcc12f647ec88625b4b9f53ee7c82a0db88043eb1d69693
SSDEEP

1536:0p6kFya9c7Ok/YNQ1gB75eGFJc/9iTjyXX9di2YTHLYjzDm:MVBQq1wiTjyHxYTHcj/

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  52019ae3429de75c9cfabbefc004d42b80c633351ac75ecbb234fd6ed4394335
- Size
  
  100KB
- MD5
  
  d248527c8be633f6421aa24d0ccf7ff7
- SHA1
  
  01caa10aa510430916963db66304ccf9fd4c6da0
- SHA256
  
  52019ae3429de75c9cfabbefc004d42b80c633351ac75ecbb234fd6ed4394335
- SHA512
  
  b8aa4dfba807d7319a79616bf7b0a2453f67709650175ad174e86b601d0fd9b130342ac0fe42e9c96fcc12f647ec88625b4b9f53ee7c82a0db88043eb1d69693
- SSDEEP
  
  1536:0p6kFya9c7Ok/YNQ1gB75eGFJc/9iTjyXX9di2YTHLYjzDm:MVBQq1wiTjyHxYTHcj/
Score

10^/10

evasion trojan
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1