69049536c693ef5777fbf761937d602b56e85f06d3128b9a62312b329fb9d9a9 | Triage

Sharing

General

Target

69049536c693ef5777fbf761937d602b56e85f06d3128b9a62312b329fb9d9a9
Size

121KB
Sample

230608-abmxrshe34
MD5

155dcefbd3014ff13e3490f28e4316a4
SHA1

ba6ab7732fc99a3cc07cd46344a29ab892c329c3
SHA256

69049536c693ef5777fbf761937d602b56e85f06d3128b9a62312b329fb9d9a9
SHA512

141eda1ac6490900986b0e2f108103d7a76696d5c6f93e6851bb8cbbe66d6a3d515a6a4fdb862a05df44cccc9079ed2df95c468302b7a41c47745f908c2e4141
SSDEEP

3072:c9QLdsON8xxwaTq29L0qdjzLfWvS8oyhuWVFrag1shbhrtvx:OQLvN8VThdLWVFmZhdrt

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  69049536c693ef5777fbf761937d602b56e85f06d3128b9a62312b329fb9d9a9
- Size
  
  121KB
- MD5
  
  155dcefbd3014ff13e3490f28e4316a4
- SHA1
  
  ba6ab7732fc99a3cc07cd46344a29ab892c329c3
- SHA256
  
  69049536c693ef5777fbf761937d602b56e85f06d3128b9a62312b329fb9d9a9
- SHA512
  
  141eda1ac6490900986b0e2f108103d7a76696d5c6f93e6851bb8cbbe66d6a3d515a6a4fdb862a05df44cccc9079ed2df95c468302b7a41c47745f908c2e4141
- SSDEEP
  
  3072:c9QLdsON8xxwaTq29L0qdjzLfWvS8oyhuWVFrag1shbhrtvx:OQLvN8VThdLWVFmZhdrt
Score

10^/10

evasion trojan
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1