900f550e17677f9655376c16cefad875624646b304018c643435304ceaa0766f | Triage

Sharing

General

Target

900f550e17677f9655376c16cefad875624646b304018c643435304ceaa0766f
Size

121KB
Sample

230608-gnce5add3t
MD5

ee705b0ff6dc6c730d412854061c8dd6
SHA1

672f2fab9826a85ee686799afe7bcfaf1a2db16f
SHA256

900f550e17677f9655376c16cefad875624646b304018c643435304ceaa0766f
SHA512

651b06b6b15aa5e1e07fcd180ad3466874865c9647a6b92a5fb83733f85dfc852145904dcf8ba1922f711f2712148c836cd206126f39d3a1888891f5db47abb2
SSDEEP

3072:a9QLdsON8xxwaTq29L026eLfWv48oyhuWVFrag1shbfrtvx:cQLvN8VT/6AWVFmZhDrt

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  900f550e17677f9655376c16cefad875624646b304018c643435304ceaa0766f
- Size
  
  121KB
- MD5
  
  ee705b0ff6dc6c730d412854061c8dd6
- SHA1
  
  672f2fab9826a85ee686799afe7bcfaf1a2db16f
- SHA256
  
  900f550e17677f9655376c16cefad875624646b304018c643435304ceaa0766f
- SHA512
  
  651b06b6b15aa5e1e07fcd180ad3466874865c9647a6b92a5fb83733f85dfc852145904dcf8ba1922f711f2712148c836cd206126f39d3a1888891f5db47abb2
- SSDEEP
  
  3072:a9QLdsON8xxwaTq29L026eLfWv48oyhuWVFrag1shbfrtvx:cQLvN8VT/6AWVFmZhDrt
Score

10^/10

evasion trojan
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Modify Registry

Disabling Security Tools

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1