3f58f2b8881698a60f1e1bf13cbe40dc13ba72df9261596a7c16fc6c501cf4f3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3f58f2b8881698a60f1e1bf13cbe40dc13ba72df9261596a7c16fc6c501cf4f3
Size

100KB
Sample

230607-ttm52acg35
MD5

36d9e95515da94a709be0a2b85712875
SHA1

63cd5e98f2522f7c4287e03650564c6ab5f97585
SHA256

3f58f2b8881698a60f1e1bf13cbe40dc13ba72df9261596a7c16fc6c501cf4f3
SHA512

e1e9003767a3755182d1b8fbf082b44c8ddfdbf620f6205d42a1b9732be029d37f0ed43bddc996b9d8188253a50f00d210a98ffd658c2252154b46d690cb3173
SSDEEP

1536:wp6kFya9c7Ok/YNQ5RQgB75eGF+SHjyXX9di2YTHLYjzDm:oVBQV1+SHjyHxYTHcj/

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  3f58f2b8881698a60f1e1bf13cbe40dc13ba72df9261596a7c16fc6c501cf4f3
- Size
  
  100KB
- MD5
  
  36d9e95515da94a709be0a2b85712875
- SHA1
  
  63cd5e98f2522f7c4287e03650564c6ab5f97585
- SHA256
  
  3f58f2b8881698a60f1e1bf13cbe40dc13ba72df9261596a7c16fc6c501cf4f3
- SHA512
  
  e1e9003767a3755182d1b8fbf082b44c8ddfdbf620f6205d42a1b9732be029d37f0ed43bddc996b9d8188253a50f00d210a98ffd658c2252154b46d690cb3173
- SSDEEP
  
  1536:wp6kFya9c7Ok/YNQ5RQgB75eGF+SHjyXX9di2YTHLYjzDm:oVBQV1+SHjyHxYTHcj/
Score

10^/10

evasion trojan
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1