3d40cf64685b25d05402cf4e5e5115133b414fef401834653529e7032630fbe1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3d40cf64685b25d05402cf4e5e5115133b414fef401834653529e7032630fbe1
Size

100KB
Sample

230607-xjdemafa7w
MD5

0e8f5f66fdc8f809dece1d63e3103c0e
SHA1

12c1bdf6cca073711e79e55b8e60490d1222c7de
SHA256

3d40cf64685b25d05402cf4e5e5115133b414fef401834653529e7032630fbe1
SHA512

6014d2192b0b8761c4d7b8e82a5850de4552686153a4abfbf7726eaaabbe969b9c6b3fe9fa8dbe0a52d66b97260be59c6da2d0166242c0b09806a44565a1b6c4
SSDEEP

1536:vp6kFya9c7Ok/YNQ9vgB75eGF6ijjyXX9di2YTHLYjzDm:hVBQG16ijjyHxYTHcj/

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  3d40cf64685b25d05402cf4e5e5115133b414fef401834653529e7032630fbe1
- Size
  
  100KB
- MD5
  
  0e8f5f66fdc8f809dece1d63e3103c0e
- SHA1
  
  12c1bdf6cca073711e79e55b8e60490d1222c7de
- SHA256
  
  3d40cf64685b25d05402cf4e5e5115133b414fef401834653529e7032630fbe1
- SHA512
  
  6014d2192b0b8761c4d7b8e82a5850de4552686153a4abfbf7726eaaabbe969b9c6b3fe9fa8dbe0a52d66b97260be59c6da2d0166242c0b09806a44565a1b6c4
- SSDEEP
  
  1536:vp6kFya9c7Ok/YNQ9vgB75eGF6ijjyXX9di2YTHLYjzDm:hVBQG16ijjyHxYTHcj/
Score

10^/10

evasion trojan
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1