029e6c921f3723c4de68abf5255761d2a52efca3f87f13c75269edc9fbac07a1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

07730699.exe
Size

100KB
Sample

230607-vc2sjadg4t
MD5

ddf5947eb2387b704ca9225e4aae5bd6
SHA1

ae063b2651cffd4a47c1ab29274349d35f66196c
SHA256

029e6c921f3723c4de68abf5255761d2a52efca3f87f13c75269edc9fbac07a1
SHA512

582ca9c596fc45632b53d4fd7d9c65c42e7f7d6649a351213b30990514678ee99b3d1a8c751a1e5089d75f1efbbd8f295b24a9b895678110dafa6148e08b7e23
SSDEEP

1536:Mp6kFya9c7Ok/YNQUgB75eGFXgizjyXX9di2YTHLYjzDm:UVBQ91wizjyHxYTHcj/

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  07730699.exe
- Size
  
  100KB
- MD5
  
  ddf5947eb2387b704ca9225e4aae5bd6
- SHA1
  
  ae063b2651cffd4a47c1ab29274349d35f66196c
- SHA256
  
  029e6c921f3723c4de68abf5255761d2a52efca3f87f13c75269edc9fbac07a1
- SHA512
  
  582ca9c596fc45632b53d4fd7d9c65c42e7f7d6649a351213b30990514678ee99b3d1a8c751a1e5089d75f1efbbd8f295b24a9b895678110dafa6148e08b7e23
- SSDEEP
  
  1536:Mp6kFya9c7Ok/YNQUgB75eGFXgizjyXX9di2YTHLYjzDm:UVBQ91wizjyHxYTHcj/
Score

10^/10

evasion trojan
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2