10ece29b80b68867a898b3ad9f79f0be793d85b0fc8b5a51e169b6d057d5cc54 | Triage

Sharing

General

Target

10ece29b80b68867a898b3ad9f79f0be793d85b0fc8b5a51e169b6d057d5cc54
Size

121KB
Sample

230608-glf1jadc9s
MD5

13da96b4d6ff40392b808a6bf9d6a0bf
SHA1

927cc7065b30ae5cf8ed2af60646355bb8713509
SHA256

10ece29b80b68867a898b3ad9f79f0be793d85b0fc8b5a51e169b6d057d5cc54
SHA512

758e2877247979f49f5f0cddd0572ebc4855d0dac65dce1815d3696a3be7df3f0a5df000a18a0811a5e03f471ecec65842a2d281e3b04dc220afb6b177d68471
SSDEEP

3072:a9QLdsON8xxwaTq29L026eLfWv48oyhuWVFrag1shbfrtvx6:cQLvN8VT/6AWVFmZhDrt8

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  10ece29b80b68867a898b3ad9f79f0be793d85b0fc8b5a51e169b6d057d5cc54
- Size
  
  121KB
- MD5
  
  13da96b4d6ff40392b808a6bf9d6a0bf
- SHA1
  
  927cc7065b30ae5cf8ed2af60646355bb8713509
- SHA256
  
  10ece29b80b68867a898b3ad9f79f0be793d85b0fc8b5a51e169b6d057d5cc54
- SHA512
  
  758e2877247979f49f5f0cddd0572ebc4855d0dac65dce1815d3696a3be7df3f0a5df000a18a0811a5e03f471ecec65842a2d281e3b04dc220afb6b177d68471
- SSDEEP
  
  3072:a9QLdsON8xxwaTq29L026eLfWv48oyhuWVFrag1shbfrtvx6:cQLvN8VT/6AWVFmZhDrt8
Score

10^/10

evasion trojan
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Modify Registry

Disabling Security Tools

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1