42bb4f3fdfe3d779ecdb22a92a69843941da454cd955ff3815bb300c7678b0d7 | Triage

Sharing

General

Target

42bb4f3fdfe3d779ecdb22a92a69843941da454cd955ff3815bb300c7678b0d7
Size

91KB
Sample

230607-znppkafg77
MD5

c3d1c51793d90a27bf6624f827d50b52
SHA1

9d21d5c4b99ee123eecebc9145c087bc7f4205f3
SHA256

42bb4f3fdfe3d779ecdb22a92a69843941da454cd955ff3815bb300c7678b0d7
SHA512

c34952f5e9097215ebf36395b27f07328105b74d2b2c51a8a3320e3cf7a96bbc0880e763aee5060ba9b85823a629765b8dca15e34435c3e85ff9812d935a8ab4
SSDEEP

1536:bwiZAWIZDfYQkn1t5KdX1xtbruAyqyhuWVFkVJcnag1QD03ClcXcKbuPx6:8wSZAPKfOAyqyhuWVFrag140qx

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  42bb4f3fdfe3d779ecdb22a92a69843941da454cd955ff3815bb300c7678b0d7
- Size
  
  91KB
- MD5
  
  c3d1c51793d90a27bf6624f827d50b52
- SHA1
  
  9d21d5c4b99ee123eecebc9145c087bc7f4205f3
- SHA256
  
  42bb4f3fdfe3d779ecdb22a92a69843941da454cd955ff3815bb300c7678b0d7
- SHA512
  
  c34952f5e9097215ebf36395b27f07328105b74d2b2c51a8a3320e3cf7a96bbc0880e763aee5060ba9b85823a629765b8dca15e34435c3e85ff9812d935a8ab4
- SSDEEP
  
  1536:bwiZAWIZDfYQkn1t5KdX1xtbruAyqyhuWVFkVJcnag1QD03ClcXcKbuPx6:8wSZAPKfOAyqyhuWVFrag140qx
Score

10^/10

evasion trojan
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1