6339f0badb9569dbc301bf1e391485b1dec3d6b06b8abc622964ac954ca3aa01 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6339f0badb9569dbc301bf1e391485b1dec3d6b06b8abc622964ac954ca3aa01
Size

147KB
Sample

230608-rg6eqsgf6v
MD5

f9fe04df546afadd9b69143e2f3fc589
SHA1

03f0d6c08b0f668caf47bd9227514c0ece4a3292
SHA256

6339f0badb9569dbc301bf1e391485b1dec3d6b06b8abc622964ac954ca3aa01
SHA512

d1f7b79e5758fd080434b34266c32e6fb1997923c0f9eab23a21fd51c6c1829bd34e4eae53aba2c8d6b877f4e686056ca23cd09489ae5ec7a1effd433730e8d7
SSDEEP

3072:WJJIeJKvcG7P6gnuGu/q8lrueBAyhuWVFrag1btdPsx:WJiesZP9noBiWVFmKtdP

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  6339f0badb9569dbc301bf1e391485b1dec3d6b06b8abc622964ac954ca3aa01
- Size
  
  147KB
- MD5
  
  f9fe04df546afadd9b69143e2f3fc589
- SHA1
  
  03f0d6c08b0f668caf47bd9227514c0ece4a3292
- SHA256
  
  6339f0badb9569dbc301bf1e391485b1dec3d6b06b8abc622964ac954ca3aa01
- SHA512
  
  d1f7b79e5758fd080434b34266c32e6fb1997923c0f9eab23a21fd51c6c1829bd34e4eae53aba2c8d6b877f4e686056ca23cd09489ae5ec7a1effd433730e8d7
- SSDEEP
  
  3072:WJJIeJKvcG7P6gnuGu/q8lrueBAyhuWVFrag1btdPsx:WJiesZP9noBiWVFmKtdP
Score

10^/10

evasion trojan
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1