bc7a7538ffd28f635039a2aad3ac6dec8ba69eea74ef8ddd75c01b31f44c3c67 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bc7a7538ffd28f635039a2aad3ac6dec8ba69eea74ef8ddd75c01b31f44c3c67
Size

148KB
Sample

230608-p9cl1sfe45
MD5

7bc32db653bcfca2c9480666e4fd1d01
SHA1

fdab7d5e4c4003cc86af42e32f7d0f70c237e656
SHA256

bc7a7538ffd28f635039a2aad3ac6dec8ba69eea74ef8ddd75c01b31f44c3c67
SHA512

8af4be69467c56a956bd9167c96a97ed5977083333c9b821531bb49288ff490f6b253128da1669835254d59122fc4b3dbeff99c63fe532546940b7e127fc3084
SSDEEP

3072:UDNfk3As30+wTXASRWhPt4Ztuk9zhLTEXj13CIyhuWVFrag1dJ0yx:UD5k3As3xiutQt7eWVFmkJ0

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  bc7a7538ffd28f635039a2aad3ac6dec8ba69eea74ef8ddd75c01b31f44c3c67
- Size
  
  148KB
- MD5
  
  7bc32db653bcfca2c9480666e4fd1d01
- SHA1
  
  fdab7d5e4c4003cc86af42e32f7d0f70c237e656
- SHA256
  
  bc7a7538ffd28f635039a2aad3ac6dec8ba69eea74ef8ddd75c01b31f44c3c67
- SHA512
  
  8af4be69467c56a956bd9167c96a97ed5977083333c9b821531bb49288ff490f6b253128da1669835254d59122fc4b3dbeff99c63fe532546940b7e127fc3084
- SSDEEP
  
  3072:UDNfk3As30+wTXASRWhPt4Ztuk9zhLTEXj13CIyhuWVFrag1dJ0yx:UD5k3As3xiutQt7eWVFmkJ0
Score

10^/10

evasion trojan
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1