4292cf5e420083d856ca97876a5e252b796e84aafc436c357284167a177b11ca | Triage

Sharing

General

Target

4292cf5e420083d856ca97876a5e252b796e84aafc436c357284167a177b11ca
Size

121KB
Sample

230608-dsnr6sbd76
MD5

e8fce7cac868c66d9316a2162343dc34
SHA1

4cffa81eba555980b0a62dae54f1ce4ef258c462
SHA256

4292cf5e420083d856ca97876a5e252b796e84aafc436c357284167a177b11ca
SHA512

50604db796a2787645e1b58f4cdc8b47e5b52faf8f24f0d859e45a2ce637e00b92589cf60ce01a417543627dc17191b1b1c8713c970c9488ea44513662d35373
SSDEEP

3072:u9QLdsON8xxwaTq29L/vaPcLfWvg8oyhuWVFrag1shbUrtvx:oQLvN8VTzaP+WVFmZhwrt

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  4292cf5e420083d856ca97876a5e252b796e84aafc436c357284167a177b11ca
- Size
  
  121KB
- MD5
  
  e8fce7cac868c66d9316a2162343dc34
- SHA1
  
  4cffa81eba555980b0a62dae54f1ce4ef258c462
- SHA256
  
  4292cf5e420083d856ca97876a5e252b796e84aafc436c357284167a177b11ca
- SHA512
  
  50604db796a2787645e1b58f4cdc8b47e5b52faf8f24f0d859e45a2ce637e00b92589cf60ce01a417543627dc17191b1b1c8713c970c9488ea44513662d35373
- SSDEEP
  
  3072:u9QLdsON8xxwaTq29L/vaPcLfWvg8oyhuWVFrag1shbUrtvx:oQLvN8VTzaP+WVFmZhwrt
Score

10^/10

evasion trojan
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1