b357690242716cc325aec6ad7899424c18024477a6315dab11f4911a349c582a | Triage

Sharing

General

Target

b357690242716cc325aec6ad7899424c18024477a6315dab11f4911a349c582a
Size

121KB
Sample

230607-zvbfhsfh55
MD5

7f6fa39fc02c5091806d80d7efd17e31
SHA1

b339ce6c0428e55e71b754f70af5388e4bf82b63
SHA256

b357690242716cc325aec6ad7899424c18024477a6315dab11f4911a349c582a
SHA512

b5a734484feffa8e21b1aef1830471a3df06d0b6b3b71c6565434bbe48ea2c46c32f89e27a6bee4ec56ee4a118b6e7935af32d55486551121afa82ff0c8f3229
SSDEEP

3072:R9QLdsON8xxwaTq29L2d82OLfWv38oyhuWVFrag1shbIrtvxK:nQLvN8VTo8KWVFmZhcrtc

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  b357690242716cc325aec6ad7899424c18024477a6315dab11f4911a349c582a
- Size
  
  121KB
- MD5
  
  7f6fa39fc02c5091806d80d7efd17e31
- SHA1
  
  b339ce6c0428e55e71b754f70af5388e4bf82b63
- SHA256
  
  b357690242716cc325aec6ad7899424c18024477a6315dab11f4911a349c582a
- SHA512
  
  b5a734484feffa8e21b1aef1830471a3df06d0b6b3b71c6565434bbe48ea2c46c32f89e27a6bee4ec56ee4a118b6e7935af32d55486551121afa82ff0c8f3229
- SSDEEP
  
  3072:R9QLdsON8xxwaTq29L2d82OLfWv38oyhuWVFrag1shbIrtvxK:nQLvN8VTo8KWVFmZhcrtc
Score

10^/10

evasion trojan
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1