1d197d0a3973d3a9ca6fae607b385117d295f761caa4a59f3409945ba20b9ba8 | Triage

Sharing

General

Target

1d197d0a3973d3a9ca6fae607b385117d295f761caa4a59f3409945ba20b9ba8
Size

13KB
Sample

230608-gpelwacg82
MD5

82d6d5fe9eb5718fc4c2ee8f51a0de84
SHA1

8f8450c76348b97c0ab5090647d5deb6b625665d
SHA256

1d197d0a3973d3a9ca6fae607b385117d295f761caa4a59f3409945ba20b9ba8
SHA512

1f68dc45ed3e3cdb12bf6ff35791ed9f3ef67b4140f36c552c180d8803b0f5086f8d70a7fafbd6e671e39b1f94cd00c2fdf63a973e7c6deaf722917929b7ff1f
SSDEEP

96:yA/vMth9sDLibql3A44P9QL4fwmPImg+A03PvXLOzk+gqWYV4J6oP/zNt:yw+wGWt94+iANiCkc4Jhp

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  1d197d0a3973d3a9ca6fae607b385117d295f761caa4a59f3409945ba20b9ba8
- Size
  
  13KB
- MD5
  
  82d6d5fe9eb5718fc4c2ee8f51a0de84
- SHA1
  
  8f8450c76348b97c0ab5090647d5deb6b625665d
- SHA256
  
  1d197d0a3973d3a9ca6fae607b385117d295f761caa4a59f3409945ba20b9ba8
- SHA512
  
  1f68dc45ed3e3cdb12bf6ff35791ed9f3ef67b4140f36c552c180d8803b0f5086f8d70a7fafbd6e671e39b1f94cd00c2fdf63a973e7c6deaf722917929b7ff1f
- SSDEEP
  
  96:yA/vMth9sDLibql3A44P9QL4fwmPImg+A03PvXLOzk+gqWYV4J6oP/zNt:yw+wGWt94+iANiCkc4Jhp
Score

10^/10

evasion trojan
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Windows security modification
  evasion trojan
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1