3da6c40dc06b72c5e7f6a70cb94608331bccc254bf77bda2a07794e12edd7340 | Triage

Sharing

General

Target

3da6c40dc06b72c5e7f6a70cb94608331bccc254bf77bda2a07794e12edd7340
Size

121KB
Sample

230608-grg5sadd51
MD5

18166acdc87017dd3c2b0ae4041748bf
SHA1

b9179ec39939c15c9ba27f100206e91ff8716150
SHA256

3da6c40dc06b72c5e7f6a70cb94608331bccc254bf77bda2a07794e12edd7340
SHA512

8b7ebb93903ad4fae7358b4426c5aed0a0e4173d0dee8c953c89cee11813161747c1c83ac7401c40961445806d60d374aec5b6264fdfa27d3184ad5602ecb0a8
SSDEEP

3072:f9QLdsON8xxwaTq29LJbdYLfWvt8oyhuWVFrag1shbgrtvx:1QLvN8VT1dxWVFmZhsrt

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  3da6c40dc06b72c5e7f6a70cb94608331bccc254bf77bda2a07794e12edd7340
- Size
  
  121KB
- MD5
  
  18166acdc87017dd3c2b0ae4041748bf
- SHA1
  
  b9179ec39939c15c9ba27f100206e91ff8716150
- SHA256
  
  3da6c40dc06b72c5e7f6a70cb94608331bccc254bf77bda2a07794e12edd7340
- SHA512
  
  8b7ebb93903ad4fae7358b4426c5aed0a0e4173d0dee8c953c89cee11813161747c1c83ac7401c40961445806d60d374aec5b6264fdfa27d3184ad5602ecb0a8
- SSDEEP
  
  3072:f9QLdsON8xxwaTq29LJbdYLfWvt8oyhuWVFrag1shbgrtvx:1QLvN8VT1dxWVFmZhsrt
Score

10^/10

evasion trojan
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Modify Registry

Disabling Security Tools

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1