5947339d08c724fca10329ba2065e57b11670f576f014fbbd7e909faf172da8a | Triage

Sharing

General

Target

5947339d08c724fca10329ba2065e57b11670f576f014fbbd7e909faf172da8a
Size

90KB
Sample

230607-zll6nafg62
MD5

2403ce130e001b3b4ab2fd8363854a09
SHA1

cc85d641fc99a9a0f67667dc0370348bcff4db81
SHA256

5947339d08c724fca10329ba2065e57b11670f576f014fbbd7e909faf172da8a
SHA512

150b26294a64529600fd71e603fe50e5739de384995e555bc33b488ed8d9d1e93871b4f2cf57e0b73e42829c68539e1bec0712a6a51f3af798411ea192f67477
SSDEEP

1536:kscgxqdEYB7kj1V5mF6+euYyqyhuWVFkVJcnag1QO43ClcXcKbuPx6:RF0danmp1YyqyhuWVFrag1t4qx

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  5947339d08c724fca10329ba2065e57b11670f576f014fbbd7e909faf172da8a
- Size
  
  90KB
- MD5
  
  2403ce130e001b3b4ab2fd8363854a09
- SHA1
  
  cc85d641fc99a9a0f67667dc0370348bcff4db81
- SHA256
  
  5947339d08c724fca10329ba2065e57b11670f576f014fbbd7e909faf172da8a
- SHA512
  
  150b26294a64529600fd71e603fe50e5739de384995e555bc33b488ed8d9d1e93871b4f2cf57e0b73e42829c68539e1bec0712a6a51f3af798411ea192f67477
- SSDEEP
  
  1536:kscgxqdEYB7kj1V5mF6+euYyqyhuWVFkVJcnag1QO43ClcXcKbuPx6:RF0danmp1YyqyhuWVFrag1t4qx
Score

10^/10

evasion trojan
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1