b67a520b2d6394b31729945d41efe7802493691e15b7cf5164bbc3efedd54bcb | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b67a520b2d6394b31729945d41efe7802493691e15b7cf5164bbc3efedd54bcb
Size

100KB
Sample

230607-xble9sed58
MD5

8fe5309f36fdb5cbf38252b287ada8d7
SHA1

374746e58af2dd7b73d1d402e75b13b27bc418ce
SHA256

b67a520b2d6394b31729945d41efe7802493691e15b7cf5164bbc3efedd54bcb
SHA512

8bb2428d26353867e11bfd1bb52a9ff2d6a7a20f56b89ef9755aeb67372e28fc9083d736ad82ee16526395901b8c0d2ca1e0e8bebc99a0f76da802e323cbfd1c
SSDEEP

1536:op6kFya9c7Ok/YNQwgB75eGF2O3zjyXX9di2YTHLYjzDm:wVBQh12O3zjyHxYTHcj/

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  b67a520b2d6394b31729945d41efe7802493691e15b7cf5164bbc3efedd54bcb
- Size
  
  100KB
- MD5
  
  8fe5309f36fdb5cbf38252b287ada8d7
- SHA1
  
  374746e58af2dd7b73d1d402e75b13b27bc418ce
- SHA256
  
  b67a520b2d6394b31729945d41efe7802493691e15b7cf5164bbc3efedd54bcb
- SHA512
  
  8bb2428d26353867e11bfd1bb52a9ff2d6a7a20f56b89ef9755aeb67372e28fc9083d736ad82ee16526395901b8c0d2ca1e0e8bebc99a0f76da802e323cbfd1c
- SSDEEP
  
  1536:op6kFya9c7Ok/YNQwgB75eGF2O3zjyXX9di2YTHLYjzDm:wVBQh12O3zjyHxYTHcj/
Score

10^/10

evasion trojan
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1