684cb5497eb95e621934b45b4c051556f9ba8ced92294f7afc12ad622f954d0a | Triage

Sharing

General

Target

684cb5497eb95e621934b45b4c051556f9ba8ced92294f7afc12ad622f954d0a
Size

100KB
Sample

230607-vqpp5add57
MD5

7d687659706e7876c3ddc9d005ff3918
SHA1

8e5f7f2379803ec3f1e1ba3b6c8a090c54823048
SHA256

684cb5497eb95e621934b45b4c051556f9ba8ced92294f7afc12ad622f954d0a
SHA512

97378496fd67805c8bbab6d787812468af3812f3787463a87726f7877a0387343ad3fdcd158cfae7284be5a01475410630f545cff63f038ca5e44c95e9d47c63
SSDEEP

1536:Dp6kFya9c7Ok/YNQmgB75eGFSlSTjyXX9di2YTHLYjzDm:lVBQr12STjyHxYTHcj/

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  684cb5497eb95e621934b45b4c051556f9ba8ced92294f7afc12ad622f954d0a
- Size
  
  100KB
- MD5
  
  7d687659706e7876c3ddc9d005ff3918
- SHA1
  
  8e5f7f2379803ec3f1e1ba3b6c8a090c54823048
- SHA256
  
  684cb5497eb95e621934b45b4c051556f9ba8ced92294f7afc12ad622f954d0a
- SHA512
  
  97378496fd67805c8bbab6d787812468af3812f3787463a87726f7877a0387343ad3fdcd158cfae7284be5a01475410630f545cff63f038ca5e44c95e9d47c63
- SSDEEP
  
  1536:Dp6kFya9c7Ok/YNQmgB75eGFSlSTjyXX9di2YTHLYjzDm:lVBQr12STjyHxYTHcj/
Score

10^/10

evasion trojan
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1