f73ff406b947cfc34a251ab5537c234e413872c368e0049ab952fcfd6be6cccd | Triage

Sharing

General

Target

f73ff406b947cfc34a251ab5537c234e413872c368e0049ab952fcfd6be6cccd
Size

121KB
Sample

230608-gs6jrsdd61
MD5

263b32ebf7135182da2031cec8ef655a
SHA1

0fcf1f60ae5cde978973e68255bd064f3d053668
SHA256

f73ff406b947cfc34a251ab5537c234e413872c368e0049ab952fcfd6be6cccd
SHA512

c376f16305ad1cd59c1e09adeaebc17b9d557aae21fc06c9f89a6a0ab3ba73dcf2a40e09d0565451c3d61e7d6003f78a61743719125188f6e59975097a2869bd
SSDEEP

3072:L9QLdsON8xxwaTq29L5lh9+LfWv98oyhuWVFrag1shbfrtvx:5QLvN8VTHh9jWVFmZhTrt

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  f73ff406b947cfc34a251ab5537c234e413872c368e0049ab952fcfd6be6cccd
- Size
  
  121KB
- MD5
  
  263b32ebf7135182da2031cec8ef655a
- SHA1
  
  0fcf1f60ae5cde978973e68255bd064f3d053668
- SHA256
  
  f73ff406b947cfc34a251ab5537c234e413872c368e0049ab952fcfd6be6cccd
- SHA512
  
  c376f16305ad1cd59c1e09adeaebc17b9d557aae21fc06c9f89a6a0ab3ba73dcf2a40e09d0565451c3d61e7d6003f78a61743719125188f6e59975097a2869bd
- SSDEEP
  
  3072:L9QLdsON8xxwaTq29L5lh9+LfWv98oyhuWVFrag1shbfrtvx:5QLvN8VTHh9jWVFmZhTrt
Score

10^/10

evasion trojan
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Modify Registry

Disabling Security Tools

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1