e66e1d468c24c5658065ed217aadc9b1abd0ddbb26e188f6a9c73b7c3b92dc4b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e66e1d468c24c5658065ed217aadc9b1abd0ddbb26e188f6a9c73b7c3b92dc4b
Size

100KB
Sample

230607-vefcbadb88
MD5

63f2dec4e1c9c6c022a416e5d06994a8
SHA1

9f49a3fc13d85fb0248a033998d70c211ffc3cbb
SHA256

e66e1d468c24c5658065ed217aadc9b1abd0ddbb26e188f6a9c73b7c3b92dc4b
SHA512

d54a41a917b4ad9035be508131ad9b37b935326a307c3c93dce27d014290592e0cebab631cc6a3a311993567bd32c40061f10fb905fd084ce34c8249346ed2db
SSDEEP

1536:tp6kFya9c7Ok/YNQwgB75eGFnXTjyXX9di2YTHLYjzDm:nVBQh1nXTjyHxYTHcj/

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  e66e1d468c24c5658065ed217aadc9b1abd0ddbb26e188f6a9c73b7c3b92dc4b
- Size
  
  100KB
- MD5
  
  63f2dec4e1c9c6c022a416e5d06994a8
- SHA1
  
  9f49a3fc13d85fb0248a033998d70c211ffc3cbb
- SHA256
  
  e66e1d468c24c5658065ed217aadc9b1abd0ddbb26e188f6a9c73b7c3b92dc4b
- SHA512
  
  d54a41a917b4ad9035be508131ad9b37b935326a307c3c93dce27d014290592e0cebab631cc6a3a311993567bd32c40061f10fb905fd084ce34c8249346ed2db
- SSDEEP
  
  1536:tp6kFya9c7Ok/YNQwgB75eGFnXTjyXX9di2YTHLYjzDm:nVBQh1nXTjyHxYTHcj/
Score

10^/10

evasion trojan
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1