c6fa749170bbd30d7a68104d46a621d138e2837a14a22e0af594007921aed6d7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c6fa749170bbd30d7a68104d46a621d138e2837a14a22e0af594007921aed6d7
Size

100KB
Sample

230607-wwb7naeb66
MD5

bf73926e917d71b0cd17056924697878
SHA1

bc97d5c6e92f1f1f765f71e35614d5d3a3ad73d1
SHA256

c6fa749170bbd30d7a68104d46a621d138e2837a14a22e0af594007921aed6d7
SHA512

e8ac1e0ab17c34b2bda861e7b388bdf0b44615a7f3dcb2df7f06c5b6350299be5f87524b6b104999f32890fc61b01afd37a7d5ccf57a43471c178c414035edfa
SSDEEP

1536:op6kFya9c7Ok/YNQzgB75eGFGTCfjyXX9di2YTHLYjzDm:wVBQE1iCfjyHxYTHcj/

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  c6fa749170bbd30d7a68104d46a621d138e2837a14a22e0af594007921aed6d7
- Size
  
  100KB
- MD5
  
  bf73926e917d71b0cd17056924697878
- SHA1
  
  bc97d5c6e92f1f1f765f71e35614d5d3a3ad73d1
- SHA256
  
  c6fa749170bbd30d7a68104d46a621d138e2837a14a22e0af594007921aed6d7
- SHA512
  
  e8ac1e0ab17c34b2bda861e7b388bdf0b44615a7f3dcb2df7f06c5b6350299be5f87524b6b104999f32890fc61b01afd37a7d5ccf57a43471c178c414035edfa
- SSDEEP
  
  1536:op6kFya9c7Ok/YNQzgB75eGFGTCfjyXX9di2YTHLYjzDm:wVBQE1iCfjyHxYTHcj/
Score

10^/10

evasion trojan
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1