c1eee67b1d762420595ac9906f7e13bd8a511a10e01b969a18b4f1f9eaa6ced7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c1eee67b1d762420595ac9906f7e13bd8a511a10e01b969a18b4f1f9eaa6ced7
Size

101KB
Sample

230607-yvnv6sga2v
MD5

6ec4c7adcebdedcc35e3d9cac73a071c
SHA1

53a77ce7f99a9d9b76b72c4dc16d147d7239efde
SHA256

c1eee67b1d762420595ac9906f7e13bd8a511a10e01b969a18b4f1f9eaa6ced7
SHA512

9ce0a6dc39d00494b31bae11d5c7e4d073ab7ab9e1cf4ffdf6b4e02e003be6626394bd4916395c80466d9d74810162d235aa80729bf200ff6a1ef4b4734c9aeb
SSDEEP

1536:Rp6kFya9c7Ok/YNQmdgB75eGFKiTjyXX9di2YTHLYjzDm:bVBQmy1KiTjyHxYTHcj/

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  c1eee67b1d762420595ac9906f7e13bd8a511a10e01b969a18b4f1f9eaa6ced7
- Size
  
  101KB
- MD5
  
  6ec4c7adcebdedcc35e3d9cac73a071c
- SHA1
  
  53a77ce7f99a9d9b76b72c4dc16d147d7239efde
- SHA256
  
  c1eee67b1d762420595ac9906f7e13bd8a511a10e01b969a18b4f1f9eaa6ced7
- SHA512
  
  9ce0a6dc39d00494b31bae11d5c7e4d073ab7ab9e1cf4ffdf6b4e02e003be6626394bd4916395c80466d9d74810162d235aa80729bf200ff6a1ef4b4734c9aeb
- SSDEEP
  
  1536:Rp6kFya9c7Ok/YNQmdgB75eGFKiTjyXX9di2YTHLYjzDm:bVBQmy1KiTjyHxYTHcj/
Score

10^/10

evasion trojan
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1