7bda0825e9c2ac4693f63b3e0c6262f5825209f405f560d47a3f50a7b6068fdf | Triage

Sharing

General

Target

7bda0825e9c2ac4693f63b3e0c6262f5825209f405f560d47a3f50a7b6068fdf
Size

121KB
Sample

230607-z3p9msge7y
MD5

a9eb9435953cdf8c41adc93c686577b7
SHA1

41bd9347177885e72a6c27bcc7be2ef803fce212
SHA256

7bda0825e9c2ac4693f63b3e0c6262f5825209f405f560d47a3f50a7b6068fdf
SHA512

46e124eb8db0f30f94bf28b40630c00b1900277ae7fa995dc94dcef12ad2f2da630f713ee54163e2c8d2f62aa503e0e8f5ebe31cb77ee914a88bac27833aba69
SSDEEP

3072:b9QLdsON8xxwaTq29L9a3bpmRLfWvp8oyhuWVFrag1shbCrtvx:JQLvN8VT0rpjWVFmZh2rt

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  7bda0825e9c2ac4693f63b3e0c6262f5825209f405f560d47a3f50a7b6068fdf
- Size
  
  121KB
- MD5
  
  a9eb9435953cdf8c41adc93c686577b7
- SHA1
  
  41bd9347177885e72a6c27bcc7be2ef803fce212
- SHA256
  
  7bda0825e9c2ac4693f63b3e0c6262f5825209f405f560d47a3f50a7b6068fdf
- SHA512
  
  46e124eb8db0f30f94bf28b40630c00b1900277ae7fa995dc94dcef12ad2f2da630f713ee54163e2c8d2f62aa503e0e8f5ebe31cb77ee914a88bac27833aba69
- SSDEEP
  
  3072:b9QLdsON8xxwaTq29L9a3bpmRLfWvp8oyhuWVFrag1shbCrtvx:JQLvN8VT0rpjWVFmZh2rt
Score

10^/10

evasion trojan
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1