1d197d0a3973d3a9ca6fae607b385117d295f761caa4a59f3409945ba20b9ba8 | Triage

Sharing

General

Target

1d197d0a3973d3a9ca6fae607b385117d295f761caa4a59f3409945ba20b9ba8
Size

13KB
Sample

230608-gpelwacg82
MD5

82d6d5fe9eb5718fc4c2ee8f51a0de84
SHA1

8f8450c76348b97c0ab5090647d5deb6b625665d
SHA256

1d197d0a3973d3a9ca6fae607b385117d295f761caa4a59f3409945ba20b9ba8
SHA512

1f68dc45ed3e3cdb12bf6ff35791ed9f3ef67b4140f36c552c180d8803b0f5086f8d70a7fafbd6e671e39b1f94cd00c2fdf63a973e7c6deaf722917929b7ff1f
SSDEEP

96:yA/vMth9sDLibql3A44P9QL4fwmPImg+A03PvXLOzk+gqWYV4J6oP/zNt:yw+wGWt94+iANiCkc4Jhp

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  1d197d0a3973d3a9ca6fae607b385117d295f761caa4a59f3409945ba20b9ba8
- Size
  
  13KB
- MD5
  
  82d6d5fe9eb5718fc4c2ee8f51a0de84
- SHA1
  
  8f8450c76348b97c0ab5090647d5deb6b625665d
- SHA256
  
  1d197d0a3973d3a9ca6fae607b385117d295f761caa4a59f3409945ba20b9ba8
- SHA512
  
  1f68dc45ed3e3cdb12bf6ff35791ed9f3ef67b4140f36c552c180d8803b0f5086f8d70a7fafbd6e671e39b1f94cd00c2fdf63a973e7c6deaf722917929b7ff1f
- SSDEEP
  
  96:yA/vMth9sDLibql3A44P9QL4fwmPImg+A03PvXLOzk+gqWYV4J6oP/zNt:yw+wGWt94+iANiCkc4Jhp
Score

10^/10

evasion trojan
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Windows security modification
  evasion trojan
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Modify Registry

Disabling Security Tools

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1