bdb17740b5f6d560eca3967d9e4a64fe0334efaf37d5dae56880f85548ab0c08 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bdb17740b5f6d560eca3967d9e4a64fe0334efaf37d5dae56880f85548ab0c08
Size

121KB
Sample

230608-gw1spadd9z
MD5

2959b57bbcf049e0e5b5c385b6005fef
SHA1

d5b4ea2c01cfbb19c9eaac6b761110fddaf32819
SHA256

bdb17740b5f6d560eca3967d9e4a64fe0334efaf37d5dae56880f85548ab0c08
SHA512

45d11150246f70c7a79ca7c076df0c680bade66b543cd33ce4de23c2351c898955db1248ce164400b479be40878d86ed133086a4b22e23dfe840def11c978350
SSDEEP

3072:l9QLdsON8xxwaTq29Lr1W0+LfWvP8oyhuWVFrag1shbkrtvxK:TQLvN8VT9W0VWVFmZhYrtc

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  bdb17740b5f6d560eca3967d9e4a64fe0334efaf37d5dae56880f85548ab0c08
- Size
  
  121KB
- MD5
  
  2959b57bbcf049e0e5b5c385b6005fef
- SHA1
  
  d5b4ea2c01cfbb19c9eaac6b761110fddaf32819
- SHA256
  
  bdb17740b5f6d560eca3967d9e4a64fe0334efaf37d5dae56880f85548ab0c08
- SHA512
  
  45d11150246f70c7a79ca7c076df0c680bade66b543cd33ce4de23c2351c898955db1248ce164400b479be40878d86ed133086a4b22e23dfe840def11c978350
- SSDEEP
  
  3072:l9QLdsON8xxwaTq29Lr1W0+LfWvP8oyhuWVFrag1shbkrtvxK:TQLvN8VT9W0VWVFmZhYrtc
Score

10^/10

evasion trojan
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1