b9415ad01429c097df39326b82262730ba58dbb009aea3098a96b36fccfec3ce | Triage

Sharing

General

Target

b9415ad01429c097df39326b82262730ba58dbb009aea3098a96b36fccfec3ce
Size

100KB
Sample

230607-vtgtpaea6v
MD5

930ab79cb64755ca6d66764375632353
SHA1

b9899b0fe7b9733f8eced4d32bdee1de604221f8
SHA256

b9415ad01429c097df39326b82262730ba58dbb009aea3098a96b36fccfec3ce
SHA512

65371d797510dbbb3726989c282543691a5a6057b7fc32f1f2f2a2ebe6ffc5d89b984e99c3aaefd1015421034d45caf0b73f010df832e5cbbef34e7d72bfd753
SSDEEP

1536:Up6kFya9c7Ok/YNQ/2rgB75eGF7vSDjyXX9di2YTHLYjzDm:sVBQD17vSDjyHxYTHcj/

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  b9415ad01429c097df39326b82262730ba58dbb009aea3098a96b36fccfec3ce
- Size
  
  100KB
- MD5
  
  930ab79cb64755ca6d66764375632353
- SHA1
  
  b9899b0fe7b9733f8eced4d32bdee1de604221f8
- SHA256
  
  b9415ad01429c097df39326b82262730ba58dbb009aea3098a96b36fccfec3ce
- SHA512
  
  65371d797510dbbb3726989c282543691a5a6057b7fc32f1f2f2a2ebe6ffc5d89b984e99c3aaefd1015421034d45caf0b73f010df832e5cbbef34e7d72bfd753
- SSDEEP
  
  1536:Up6kFya9c7Ok/YNQ/2rgB75eGF7vSDjyXX9di2YTHLYjzDm:sVBQD17vSDjyHxYTHcj/
Score

10^/10

evasion trojan
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1