2cbdc971b522e377055437b0aa5cc4e67a26987a6a87501b3bc1924f0e1e45bf | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2cbdc971b522e377055437b0aa5cc4e67a26987a6a87501b3bc1924f0e1e45bf
Size

91KB
Sample

230607-zrg4wsgd7x
MD5

8324cba32664f2810f55e29e1de3ed32
SHA1

0566d537906310dcbbfac82b7da998171df7158e
SHA256

2cbdc971b522e377055437b0aa5cc4e67a26987a6a87501b3bc1924f0e1e45bf
SHA512

542c291c50210373f022e92fdbeced197b69ce7cfac0775f41448f569a0f7b9b3b10055fe96a7faa034ac0767475a491f5c69d814beeff5731515e2142e08f2a
SSDEEP

1536:bwiZAWIZDfYQkn1t5KdX1xtbruAyqyhuWVFkVJcnag1QD03ClcXcKbuPx6:8wSZAPKfOAyqyhuWVFrag140qx

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  2cbdc971b522e377055437b0aa5cc4e67a26987a6a87501b3bc1924f0e1e45bf
- Size
  
  91KB
- MD5
  
  8324cba32664f2810f55e29e1de3ed32
- SHA1
  
  0566d537906310dcbbfac82b7da998171df7158e
- SHA256
  
  2cbdc971b522e377055437b0aa5cc4e67a26987a6a87501b3bc1924f0e1e45bf
- SHA512
  
  542c291c50210373f022e92fdbeced197b69ce7cfac0775f41448f569a0f7b9b3b10055fe96a7faa034ac0767475a491f5c69d814beeff5731515e2142e08f2a
- SSDEEP
  
  1536:bwiZAWIZDfYQkn1t5KdX1xtbruAyqyhuWVFkVJcnag1QD03ClcXcKbuPx6:8wSZAPKfOAyqyhuWVFrag140qx
Score

10^/10

evasion trojan
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1