General
-
Target
ba662a6beec8caebef24e9f115f9db757b762068c62c2049a6d15e7fc286a2bb
-
Size
1.1MB
-
Sample
231009-stk51afg99
-
MD5
336140b6cdc4deb1d9c3fb4c52031af4
-
SHA1
0da89ebb450f6eb4491c6ae74fde6b4d6d2013f4
-
SHA256
ba662a6beec8caebef24e9f115f9db757b762068c62c2049a6d15e7fc286a2bb
-
SHA512
372defb02393f787dfff8e36700b9bd3cd37916ae112c47dea2253c87bf465fd91deb64372f85fa3d093e979f9cc1d5783bf2794e735226a5657b89543eafb94
-
SSDEEP
24576:syhQ0lzg1itIy6qgYIEKjh6h1zSZj9I9HoR+odjCf+hesw:bhQ0l0qUdJjh+kWGQp
Malware Config
Targets
-
-
Target
ba662a6beec8caebef24e9f115f9db757b762068c62c2049a6d15e7fc286a2bb
-
Size
1.1MB
-
MD5
336140b6cdc4deb1d9c3fb4c52031af4
-
SHA1
0da89ebb450f6eb4491c6ae74fde6b4d6d2013f4
-
SHA256
ba662a6beec8caebef24e9f115f9db757b762068c62c2049a6d15e7fc286a2bb
-
SHA512
372defb02393f787dfff8e36700b9bd3cd37916ae112c47dea2253c87bf465fd91deb64372f85fa3d093e979f9cc1d5783bf2794e735226a5657b89543eafb94
-
SSDEEP
24576:syhQ0lzg1itIy6qgYIEKjh6h1zSZj9I9HoR+odjCf+hesw:bhQ0l0qUdJjh+kWGQp
Score10/10-
Modifies Windows Defender Real-time Protection settings
-
Executes dropped EXE
-
Windows security modification
-
Adds Run key to start application
-
Suspicious use of SetThreadContext
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Create or Modify System Process
1Windows Service
1