c123082e39fc09457fbccd9ee37925cfa785ca9d1333500a2fc9c2e34ff75edf | Triage

Sharing

General

Target

c123082e39fc09457fbccd9ee37925cfa785ca9d1333500a2fc9c2e34ff75edf
Size

100KB
Sample

230607-wdyb6sdg94
MD5

1a8614e55ebc637678308396dc9ae32a
SHA1

e145dc92974dc709bf1ffc311c2644705543c1cf
SHA256

c123082e39fc09457fbccd9ee37925cfa785ca9d1333500a2fc9c2e34ff75edf
SHA512

4a9f350aedfbe31d32ff38493cdc0b79dc69f4ee494966f8009dfab9355396b8b092d387347299591f383203d0cf7cfb1d80a3deb2c606d2891002db5968b26a
SSDEEP

1536:Zp6kFya9c7Ok/YNQcgB75eGF7IrtinjyXX9di2YTHLYjzDm:zVBQl1UrtinjyHxYTHcj/

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  c123082e39fc09457fbccd9ee37925cfa785ca9d1333500a2fc9c2e34ff75edf
- Size
  
  100KB
- MD5
  
  1a8614e55ebc637678308396dc9ae32a
- SHA1
  
  e145dc92974dc709bf1ffc311c2644705543c1cf
- SHA256
  
  c123082e39fc09457fbccd9ee37925cfa785ca9d1333500a2fc9c2e34ff75edf
- SHA512
  
  4a9f350aedfbe31d32ff38493cdc0b79dc69f4ee494966f8009dfab9355396b8b092d387347299591f383203d0cf7cfb1d80a3deb2c606d2891002db5968b26a
- SSDEEP
  
  1536:Zp6kFya9c7Ok/YNQcgB75eGF7IrtinjyXX9di2YTHLYjzDm:zVBQl1UrtinjyHxYTHcj/
Score

10^/10

evasion trojan
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1