acd1a0e532f46210b026d3a91bbb096af1f4184b54f1e00f194863cead328fe8 | Triage

Sharing

General

Target

acd1a0e532f46210b026d3a91bbb096af1f4184b54f1e00f194863cead328fe8
Size

121KB
Sample

230608-fdh99acb85
MD5

9c530c072131cb67dcb24f294e3170b8
SHA1

8971762359eb51681b4af039d5a62c903c07f1a7
SHA256

acd1a0e532f46210b026d3a91bbb096af1f4184b54f1e00f194863cead328fe8
SHA512

c6577e51fc4fd8b746bc504151a72a8762fa061348220de8010ae2d7128ae519f3d70af7b61ec08e87615e0ed8911f64b7247cfe6120636a4bb88a07e6ca60f1
SSDEEP

3072:P9QLdsON8xxwaTq29LA9FkrGLfWvh8oyhuWVFrag1shb3rtvxK:lQLvN8VTekrPWVFmZhjrtc

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  acd1a0e532f46210b026d3a91bbb096af1f4184b54f1e00f194863cead328fe8
- Size
  
  121KB
- MD5
  
  9c530c072131cb67dcb24f294e3170b8
- SHA1
  
  8971762359eb51681b4af039d5a62c903c07f1a7
- SHA256
  
  acd1a0e532f46210b026d3a91bbb096af1f4184b54f1e00f194863cead328fe8
- SHA512
  
  c6577e51fc4fd8b746bc504151a72a8762fa061348220de8010ae2d7128ae519f3d70af7b61ec08e87615e0ed8911f64b7247cfe6120636a4bb88a07e6ca60f1
- SSDEEP
  
  3072:P9QLdsON8xxwaTq29LA9FkrGLfWvh8oyhuWVFrag1shb3rtvxK:lQLvN8VTekrPWVFmZhjrtc
Score

10^/10

evasion trojan
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1