General

  • Target

    f2268c6af3b4108bdf27c8ec2c12ee9ef869e51215aa9c6c0b4d1ff9761f1653

  • Size

    121KB

  • Sample

    230608-gqqqjadd5t

  • MD5

    dff0dfcba5ac39b806886e501888e06f

  • SHA1

    105197672ef026ee4923a2b59610575a9e174ee5

  • SHA256

    f2268c6af3b4108bdf27c8ec2c12ee9ef869e51215aa9c6c0b4d1ff9761f1653

  • SHA512

    e261a05ed279bbdd6c3803934ef31dfabf4a642953e169da064ee205675d6c6676cccf08cb3d86055693aa2c984457da554a8cee6df6914e458155503dc38927

  • SSDEEP

    3072:f9QLdsON8xxwaTq29LJbdYLfWvt8oyhuWVFrag1shbgrtvx:1QLvN8VT1dxWVFmZhsrt

Score
10/10

Malware Config

Targets

    • Target

      f2268c6af3b4108bdf27c8ec2c12ee9ef869e51215aa9c6c0b4d1ff9761f1653

    • Size

      121KB

    • MD5

      dff0dfcba5ac39b806886e501888e06f

    • SHA1

      105197672ef026ee4923a2b59610575a9e174ee5

    • SHA256

      f2268c6af3b4108bdf27c8ec2c12ee9ef869e51215aa9c6c0b4d1ff9761f1653

    • SHA512

      e261a05ed279bbdd6c3803934ef31dfabf4a642953e169da064ee205675d6c6676cccf08cb3d86055693aa2c984457da554a8cee6df6914e458155503dc38927

    • SSDEEP

      3072:f9QLdsON8xxwaTq29LJbdYLfWvt8oyhuWVFrag1shbgrtvx:1QLvN8VT1dxWVFmZhsrt

    Score
    10/10
    • Modifies Windows Defender Real-time Protection settings

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix ATT&CK v6

Persistence

Modify Existing Service

1
T1031

Defense Evasion

Modify Registry

1
T1112

Disabling Security Tools

1
T1089

Tasks