1a49a3a597a3c3d237c278568049762a450594f9700f1305430ba603a814dca2 | Triage

Sharing

General

Target

1a49a3a597a3c3d237c278568049762a450594f9700f1305430ba603a814dca2
Size

121KB
Sample

230608-assvcahg53
MD5

576d630fd98dd1a5dbf2836458601cd2
SHA1

8f89ef2bc33f1adcaa4f45c2ac2e618ed4be80db
SHA256

1a49a3a597a3c3d237c278568049762a450594f9700f1305430ba603a814dca2
SHA512

598c704c773b1b0130cda6c8309087c4a86bc91a307afb0cbca73a0b5a11c6f99a269b7331d1a7ce9dc8278c8375e2a386dce8f9b40e8ff42b0d857442878cd8
SSDEEP

3072:I9QLdsON8xxwaTq29LlFZtGLfWvG8oyhuWVFrag1shbnrtvx:CQLvN8VTXZt+WVFmZhrrt

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  1a49a3a597a3c3d237c278568049762a450594f9700f1305430ba603a814dca2
- Size
  
  121KB
- MD5
  
  576d630fd98dd1a5dbf2836458601cd2
- SHA1
  
  8f89ef2bc33f1adcaa4f45c2ac2e618ed4be80db
- SHA256
  
  1a49a3a597a3c3d237c278568049762a450594f9700f1305430ba603a814dca2
- SHA512
  
  598c704c773b1b0130cda6c8309087c4a86bc91a307afb0cbca73a0b5a11c6f99a269b7331d1a7ce9dc8278c8375e2a386dce8f9b40e8ff42b0d857442878cd8
- SSDEEP
  
  3072:I9QLdsON8xxwaTq29LlFZtGLfWvG8oyhuWVFrag1shbnrtvx:CQLvN8VTXZt+WVFmZhrrt
Score

10^/10

evasion trojan
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1