fcd2889fb91f31e93a992e7a3063c1598d8d4589ab912acd2d46c1eee72e583e | Triage

Sharing

General

Target

fcd2889fb91f31e93a992e7a3063c1598d8d4589ab912acd2d46c1eee72e583e
Size

101KB
Sample

230607-xpbszsfb5y
MD5

6612bc188e7fce83f39dcdbf9fcbfb65
SHA1

351dd3622a51214c8e841635ef686603bbe915a5
SHA256

fcd2889fb91f31e93a992e7a3063c1598d8d4589ab912acd2d46c1eee72e583e
SHA512

58eb3fa57d62209fbfb86b3dad00c16e4ac90f22c471460cc80ee5414388ddedc145df3c60ff29e79e8c7c0b36ea0bc72cae9cef6af729ff85b665f6e5e16fe7
SSDEEP

1536:Qvp6kE69sL+kPINmdAgB75eGFmTeCqp5m5ynX9di2YDHLYjzDm:GVhmr1mTeCS5yy3xYDHcj/

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  fcd2889fb91f31e93a992e7a3063c1598d8d4589ab912acd2d46c1eee72e583e
- Size
  
  101KB
- MD5
  
  6612bc188e7fce83f39dcdbf9fcbfb65
- SHA1
  
  351dd3622a51214c8e841635ef686603bbe915a5
- SHA256
  
  fcd2889fb91f31e93a992e7a3063c1598d8d4589ab912acd2d46c1eee72e583e
- SHA512
  
  58eb3fa57d62209fbfb86b3dad00c16e4ac90f22c471460cc80ee5414388ddedc145df3c60ff29e79e8c7c0b36ea0bc72cae9cef6af729ff85b665f6e5e16fe7
- SSDEEP
  
  1536:Qvp6kE69sL+kPINmdAgB75eGFmTeCqp5m5ynX9di2YDHLYjzDm:GVhmr1mTeCS5yy3xYDHcj/
Score

10^/10

evasion trojan
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1