f28febaa2c7e5851fc41f2fc0253c7329f0b554dc4ef73ff47b9a4403bc4e835 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f28febaa2c7e5851fc41f2fc0253c7329f0b554dc4ef73ff47b9a4403bc4e835
Size

100KB
Sample

230607-vkctdadh5t
MD5

9deac74cb3f12d272d4b6a011fcbdc92
SHA1

c8809dfd44f49dae3929acac6d5894e525037b7c
SHA256

f28febaa2c7e5851fc41f2fc0253c7329f0b554dc4ef73ff47b9a4403bc4e835
SHA512

a9ea81e17631e2915951fe8cf64bd93fcf661a6a56b8a5bf53454e18c934cc480067330dce8744576d811ea18f088f3bef98dd96c5f1f5e7c100bc331ba15a2c
SSDEEP

1536:Op6kFya9c7Ok/YNQ05gB75eGF/83AjyXX9di2YTHLYjzDm:2VBQ91k3AjyHxYTHcj/

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  f28febaa2c7e5851fc41f2fc0253c7329f0b554dc4ef73ff47b9a4403bc4e835
- Size
  
  100KB
- MD5
  
  9deac74cb3f12d272d4b6a011fcbdc92
- SHA1
  
  c8809dfd44f49dae3929acac6d5894e525037b7c
- SHA256
  
  f28febaa2c7e5851fc41f2fc0253c7329f0b554dc4ef73ff47b9a4403bc4e835
- SHA512
  
  a9ea81e17631e2915951fe8cf64bd93fcf661a6a56b8a5bf53454e18c934cc480067330dce8744576d811ea18f088f3bef98dd96c5f1f5e7c100bc331ba15a2c
- SSDEEP
  
  1536:Op6kFya9c7Ok/YNQ05gB75eGF/83AjyXX9di2YTHLYjzDm:2VBQ91k3AjyHxYTHcj/
Score

10^/10

evasion trojan
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1