700c5ef8c51afd3067c620e9b87d66de5a3ec7448aea549ca6cef9d547be23db | Triage

Sharing

General

Target

700c5ef8c51afd3067c620e9b87d66de5a3ec7448aea549ca6cef9d547be23db
Size

148KB
Sample

230608-mxqxrsfa9t
MD5

e4ba7e6295773aeb68eb899fe3c57df9
SHA1

152e56224ade29568d6146a5a515c0df6e51d16f
SHA256

700c5ef8c51afd3067c620e9b87d66de5a3ec7448aea549ca6cef9d547be23db
SHA512

d65923a0ba1aa7267935f440156cc8cbde367939654058f2c3e3e9552dacf4689bdad982e0209d3108bdf2e24be70812b700dfa03788ec22f86e5fb942e852fb
SSDEEP

3072:tDNfk3As30+wTXASRWhPt4Ztuk77VTEXjQ3CIyhuWVFrag1dV0yx:tD5k3As3xiutQtXTWVFmkV0

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  700c5ef8c51afd3067c620e9b87d66de5a3ec7448aea549ca6cef9d547be23db
- Size
  
  148KB
- MD5
  
  e4ba7e6295773aeb68eb899fe3c57df9
- SHA1
  
  152e56224ade29568d6146a5a515c0df6e51d16f
- SHA256
  
  700c5ef8c51afd3067c620e9b87d66de5a3ec7448aea549ca6cef9d547be23db
- SHA512
  
  d65923a0ba1aa7267935f440156cc8cbde367939654058f2c3e3e9552dacf4689bdad982e0209d3108bdf2e24be70812b700dfa03788ec22f86e5fb942e852fb
- SSDEEP
  
  3072:tDNfk3As30+wTXASRWhPt4Ztuk77VTEXjQ3CIyhuWVFrag1dV0yx:tD5k3As3xiutQtXTWVFmkV0
Score

10^/10

evasion trojan
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1