600de109ea0bd82a5284602298ad25e2578ae935574defecb566824eeb2a0c3e | Triage

Sharing

General

Target

600de109ea0bd82a5284602298ad25e2578ae935574defecb566824eeb2a0c3e
Size

147KB
Sample

230608-sejcvsgc59
MD5

013e1444491718780f9dec462130d287
SHA1

578ca0de7d1d82d90fdcf052d927736e0764412f
SHA256

600de109ea0bd82a5284602298ad25e2578ae935574defecb566824eeb2a0c3e
SHA512

2c3ad60f871d9f5a784c93483f662065aaf8190bac4ffb471944e19b163905b4a5b91cb07b4fa98306f5ad11464240f89b4f553f0e176c71a29f2c2597e45c60
SSDEEP

3072:kJJIeZKvcG7P6gnuGRE8lruUBAyhuWVFrag1btLPsx6:kJiecZP9n1iWVFmKtLP1

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  600de109ea0bd82a5284602298ad25e2578ae935574defecb566824eeb2a0c3e
- Size
  
  147KB
- MD5
  
  013e1444491718780f9dec462130d287
- SHA1
  
  578ca0de7d1d82d90fdcf052d927736e0764412f
- SHA256
  
  600de109ea0bd82a5284602298ad25e2578ae935574defecb566824eeb2a0c3e
- SHA512
  
  2c3ad60f871d9f5a784c93483f662065aaf8190bac4ffb471944e19b163905b4a5b91cb07b4fa98306f5ad11464240f89b4f553f0e176c71a29f2c2597e45c60
- SSDEEP
  
  3072:kJJIeZKvcG7P6gnuGRE8lruUBAyhuWVFrag1btLPsx6:kJiecZP9n1iWVFmKtLP1
Score

10^/10

evasion trojan
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1