4081badb62cb76997267933a2633c292aae3a3d80ce57b2468e3462b9171140a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4081badb62cb76997267933a2633c292aae3a3d80ce57b2468e3462b9171140a
Size

121KB
Sample

230607-zwppjafh66
MD5

bc03bfd3059e65913d9e90ecf14abae2
SHA1

3dbd6dcaa45652589ce0f1ce0c6268c9cff9651e
SHA256

4081badb62cb76997267933a2633c292aae3a3d80ce57b2468e3462b9171140a
SHA512

a44548e1cdff3fe1869bcd86f5044519786c6880cd19276eaa6d21853d8987cb989a5a3f1d62ce6e1c5c52d8f43073d696ea917c445fd2a3043b502b69f7d142
SSDEEP

3072:R9QLdsON8xxwaTq29L2d82OLfWv38oyhuWVFrag1shbIrtvx:nQLvN8VTo8KWVFmZhcrt

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  4081badb62cb76997267933a2633c292aae3a3d80ce57b2468e3462b9171140a
- Size
  
  121KB
- MD5
  
  bc03bfd3059e65913d9e90ecf14abae2
- SHA1
  
  3dbd6dcaa45652589ce0f1ce0c6268c9cff9651e
- SHA256
  
  4081badb62cb76997267933a2633c292aae3a3d80ce57b2468e3462b9171140a
- SHA512
  
  a44548e1cdff3fe1869bcd86f5044519786c6880cd19276eaa6d21853d8987cb989a5a3f1d62ce6e1c5c52d8f43073d696ea917c445fd2a3043b502b69f7d142
- SSDEEP
  
  3072:R9QLdsON8xxwaTq29L2d82OLfWv38oyhuWVFrag1shbIrtvx:nQLvN8VTo8KWVFmZhcrt
Score

10^/10

evasion trojan
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1