0773187ba570c98a514407206944915e0b85711e9d186e1c964fed6eddf4d4b5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0773187ba570c98a514407206944915e0b85711e9d186e1c964fed6eddf4d4b5
Size

148KB
Sample

230608-ll69yadg25
MD5

1f1927c5f471e9105e25e862557bea64
SHA1

57b05af1e573a19b26213506a659ef1e310d282c
SHA256

0773187ba570c98a514407206944915e0b85711e9d186e1c964fed6eddf4d4b5
SHA512

fc116773d048cb2431f2a57f127860f7ccb03c551bed10a1da05cef1e67c0b643903ffebecad0c5b0baac9ddf53194ec7db8ddd22e1d4b397df435ba088b05c3
SSDEEP

3072:dDNfk3As30+gTXASRWhPt4ZtukjBp+UTEXjs3CIyhuWVFrag1d40yx:dD5k3As3xSutQt3+kWVFmk40

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  0773187ba570c98a514407206944915e0b85711e9d186e1c964fed6eddf4d4b5
- Size
  
  148KB
- MD5
  
  1f1927c5f471e9105e25e862557bea64
- SHA1
  
  57b05af1e573a19b26213506a659ef1e310d282c
- SHA256
  
  0773187ba570c98a514407206944915e0b85711e9d186e1c964fed6eddf4d4b5
- SHA512
  
  fc116773d048cb2431f2a57f127860f7ccb03c551bed10a1da05cef1e67c0b643903ffebecad0c5b0baac9ddf53194ec7db8ddd22e1d4b397df435ba088b05c3
- SSDEEP
  
  3072:dDNfk3As30+gTXASRWhPt4ZtukjBp+UTEXjs3CIyhuWVFrag1d40yx:dD5k3As3xSutQt3+kWVFmk40
Score

10^/10

evasion trojan
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1