85aa97d53ed10d565541c0421952ad078711356b63dd9cebd41a3fe32e5a5861 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

85aa97d53ed10d565541c0421952ad078711356b63dd9cebd41a3fe32e5a5861
Size

100KB
Sample

230607-wh4praee3v
MD5

346250e22c94e916e53a3e91cf6f3fcc
SHA1

f6e9f309711eb017a52e68d508e1c227e32c216d
SHA256

85aa97d53ed10d565541c0421952ad078711356b63dd9cebd41a3fe32e5a5861
SHA512

434770d1e3a4eaa300326afffc27623a55adfd8a41dbae27e28ba287ee3309ce3ccf27ee8603736662ee7de82e26d5906a40ee8b0860b01285b5b7b1943df4c1
SSDEEP

1536:Np6kFya9c7Ok/YNQNFFdgB75eGFUinjyXX9di2YTHLYjzDm:HVBQZy1UinjyHxYTHcj/

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  85aa97d53ed10d565541c0421952ad078711356b63dd9cebd41a3fe32e5a5861
- Size
  
  100KB
- MD5
  
  346250e22c94e916e53a3e91cf6f3fcc
- SHA1
  
  f6e9f309711eb017a52e68d508e1c227e32c216d
- SHA256
  
  85aa97d53ed10d565541c0421952ad078711356b63dd9cebd41a3fe32e5a5861
- SHA512
  
  434770d1e3a4eaa300326afffc27623a55adfd8a41dbae27e28ba287ee3309ce3ccf27ee8603736662ee7de82e26d5906a40ee8b0860b01285b5b7b1943df4c1
- SSDEEP
  
  1536:Np6kFya9c7Ok/YNQNFFdgB75eGFUinjyXX9di2YTHLYjzDm:HVBQZy1UinjyHxYTHcj/
Score

10^/10

evasion trojan
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1