ebd68c6c465dc118434693f3d8efd3f2e7b1da3761990a6bb2b920f39f56ce05 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ebd68c6c465dc118434693f3d8efd3f2e7b1da3761990a6bb2b920f39f56ce05
Size

90KB
Sample

230607-zkklfagc9w
MD5

fa7e393f2320cb36ad1834dceb032c5d
SHA1

1b5165e65d234e8ff5891d25bfc1cddb872b5432
SHA256

ebd68c6c465dc118434693f3d8efd3f2e7b1da3761990a6bb2b920f39f56ce05
SHA512

90ce65b3e0122ade128c6baee8b5e9ba12d26d58c99c032ffce1621979b8a4965057f335f610e2fafc5cb29c7316ff502f251889abf58a4d2dc1fb8b5938bff2
SSDEEP

1536:kscgxqdEYB7kj1V5mF6+euYyqyhuWVFkVJcnag1QO43ClcXcKbuPx6:RF0danmp1YyqyhuWVFrag1t4qx

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  ebd68c6c465dc118434693f3d8efd3f2e7b1da3761990a6bb2b920f39f56ce05
- Size
  
  90KB
- MD5
  
  fa7e393f2320cb36ad1834dceb032c5d
- SHA1
  
  1b5165e65d234e8ff5891d25bfc1cddb872b5432
- SHA256
  
  ebd68c6c465dc118434693f3d8efd3f2e7b1da3761990a6bb2b920f39f56ce05
- SHA512
  
  90ce65b3e0122ade128c6baee8b5e9ba12d26d58c99c032ffce1621979b8a4965057f335f610e2fafc5cb29c7316ff502f251889abf58a4d2dc1fb8b5938bff2
- SSDEEP
  
  1536:kscgxqdEYB7kj1V5mF6+euYyqyhuWVFkVJcnag1QO43ClcXcKbuPx6:RF0danmp1YyqyhuWVFrag1t4qx
Score

10^/10

evasion trojan
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1