b9ad9fb27da30bc536f837ed0a5922b8f3bf0eb93a46e42369d13ad62777faab | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Internet Explorer 12 Official Port.exe
Size

220KB
Sample

240424-vnx9gsdf7x
MD5

575100faacdfe66876bc039999962151
SHA1

8f750c73b95bc39a7d884c9539698d3b61e122bb
SHA256

b9ad9fb27da30bc536f837ed0a5922b8f3bf0eb93a46e42369d13ad62777faab
SHA512

9ca59b4fda92e7a58fa2d92a7c15fbf6ac156c2cdac7c3851d48736ffcdda4f272524b13be54918d33dc72e8db1f05a7cef741822b60ab9b79c68e18d17c5046
SSDEEP

1536:F7fbN3eEDhDPA/pICdUkbBtW7upvaLU0bI5taxKo0IOlnToIfuwljSZkKvnoHfhT:R7DhdC6kzWypvaQ0FxyNTBfuaj7T

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  Internet Explorer 12 Official Port.exe
- Size
  
  220KB
- MD5
  
  575100faacdfe66876bc039999962151
- SHA1
  
  8f750c73b95bc39a7d884c9539698d3b61e122bb
- SHA256
  
  b9ad9fb27da30bc536f837ed0a5922b8f3bf0eb93a46e42369d13ad62777faab
- SHA512
  
  9ca59b4fda92e7a58fa2d92a7c15fbf6ac156c2cdac7c3851d48736ffcdda4f272524b13be54918d33dc72e8db1f05a7cef741822b60ab9b79c68e18d17c5046
- SSDEEP
  
  1536:F7fbN3eEDhDPA/pICdUkbBtW7upvaLU0bI5taxKo0IOlnToIfuwljSZkKvnoHfhT:R7DhdC6kzWypvaQ0FxyNTBfuaj7T
Score

10^/10

evasion trojan
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Disables Task Manager via registry modification
  evasion
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Disable or Modify Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1