b8163a53900d7af17a177326b3c26544edbca66a4a38d450ca7ffb237be1212d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b8163a53900d7af17a177326b3c26544edbca66a4a38d450ca7ffb237be1212d
Size

90KB
Sample

230607-zjfwvsgc8v
MD5

efd21c22e413fe7c31e90943151845e1
SHA1

bc94e35be5ab1994cfc2e83d0e9a99bf24bc9308
SHA256

b8163a53900d7af17a177326b3c26544edbca66a4a38d450ca7ffb237be1212d
SHA512

2578a48e9730a19708084ae2d92b7cd72282b9f8f68c0d21d4772b4839b5e0b6f52f123f9fadb6a2f4e95a9e80a26cfaec439097fcaaa5d9c650ac4ba620dbf5
SSDEEP

1536:kscgxqdEYB7kj1V5mF6+euYyqyhuWVFkVJcnag1QO43ClcXcKbuPx6j:RF0danmp1YyqyhuWVFrag1t4qxK

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  b8163a53900d7af17a177326b3c26544edbca66a4a38d450ca7ffb237be1212d
- Size
  
  90KB
- MD5
  
  efd21c22e413fe7c31e90943151845e1
- SHA1
  
  bc94e35be5ab1994cfc2e83d0e9a99bf24bc9308
- SHA256
  
  b8163a53900d7af17a177326b3c26544edbca66a4a38d450ca7ffb237be1212d
- SHA512
  
  2578a48e9730a19708084ae2d92b7cd72282b9f8f68c0d21d4772b4839b5e0b6f52f123f9fadb6a2f4e95a9e80a26cfaec439097fcaaa5d9c650ac4ba620dbf5
- SSDEEP
  
  1536:kscgxqdEYB7kj1V5mF6+euYyqyhuWVFkVJcnag1QO43ClcXcKbuPx6j:RF0danmp1YyqyhuWVFrag1t4qxK
Score

10^/10

evasion trojan
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1