69ac699d4abdeead355d5cac43ecd9c8a89698413ca93dda51e533f67cb6a409 | Triage

Sharing

General

Target

69ac699d4abdeead355d5cac43ecd9c8a89698413ca93dda51e533f67cb6a409
Size

121KB
Sample

230608-gscxfsch25
MD5

fb023c7936d922a2d6c9746c6bef6f84
SHA1

22995a9613a5fde4b6030fd1561cd1e4db98159a
SHA256

69ac699d4abdeead355d5cac43ecd9c8a89698413ca93dda51e533f67cb6a409
SHA512

0a13b4fcafe45cf0fd032a2bd6a3d45bdbad473370a2b5ba6052290fa29b4ab7292243a5e0ce0627e836bb4074db881efba554569f9bb01a825555e9938502ce
SSDEEP

3072:L9QLdsON8xxwaTq29L5lh9+LfWv98oyhuWVFrag1shbfrtvx6:5QLvN8VTHh9jWVFmZhTrt8

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  69ac699d4abdeead355d5cac43ecd9c8a89698413ca93dda51e533f67cb6a409
- Size
  
  121KB
- MD5
  
  fb023c7936d922a2d6c9746c6bef6f84
- SHA1
  
  22995a9613a5fde4b6030fd1561cd1e4db98159a
- SHA256
  
  69ac699d4abdeead355d5cac43ecd9c8a89698413ca93dda51e533f67cb6a409
- SHA512
  
  0a13b4fcafe45cf0fd032a2bd6a3d45bdbad473370a2b5ba6052290fa29b4ab7292243a5e0ce0627e836bb4074db881efba554569f9bb01a825555e9938502ce
- SSDEEP
  
  3072:L9QLdsON8xxwaTq29L5lh9+LfWv98oyhuWVFrag1shbfrtvx6:5QLvN8VTHh9jWVFmZhTrt8
Score

10^/10

evasion trojan
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Modify Registry

Disabling Security Tools

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1