42043b37410d56a28c7715757a755da46b9c2bec419b2eb05d0e5b275a089ccc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

42043b37410d56a28c7715757a755da46b9c2bec419b2eb05d0e5b275a089ccc
Size

121KB
Sample

230608-bqrpyaac72
MD5

7fbe79fe58968270aaf43be8bc51f4b3
SHA1

aaeba545d3763dfadd76acf98e8dd01952871335
SHA256

42043b37410d56a28c7715757a755da46b9c2bec419b2eb05d0e5b275a089ccc
SHA512

1ace93db834394110eb0ef36797667afcd7b59767f50c17e71d9a83eaeb3bfcebdce6eee420614baab41c65112cc16dcb69f3530f63dbc79c9b0de532a3f385f
SSDEEP

3072:+9QLdsON8xxwaTq29LuRaBUwn+LfWvA8oyhuWVFrag1shbfirtvx:4QLvN8VTqaKwnwWVFmZhert

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  42043b37410d56a28c7715757a755da46b9c2bec419b2eb05d0e5b275a089ccc
- Size
  
  121KB
- MD5
  
  7fbe79fe58968270aaf43be8bc51f4b3
- SHA1
  
  aaeba545d3763dfadd76acf98e8dd01952871335
- SHA256
  
  42043b37410d56a28c7715757a755da46b9c2bec419b2eb05d0e5b275a089ccc
- SHA512
  
  1ace93db834394110eb0ef36797667afcd7b59767f50c17e71d9a83eaeb3bfcebdce6eee420614baab41c65112cc16dcb69f3530f63dbc79c9b0de532a3f385f
- SSDEEP
  
  3072:+9QLdsON8xxwaTq29LuRaBUwn+LfWvA8oyhuWVFrag1shbfirtvx:4QLvN8VTqaKwnwWVFmZhert
Score

10^/10

evasion trojan
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1