3ae807cdf1ed10777825dd21274a4c229327802be46bd34633abceaff0cc1b00 | Triage

Sharing

General

Target

turnoff_windefender.exe
Size

255KB
Sample

240819-q8tpksxglb
MD5

ec3b5834311c0b3ae5af9efb4eaba0cc
SHA1

ef14d344482d2266eb1764b1d2373d54e63161a9
SHA256

3ae807cdf1ed10777825dd21274a4c229327802be46bd34633abceaff0cc1b00
SHA512

e7a290e595b13c6e241804b294d168c5162d6d4b006e76ce0b84db8fae8e6e60d57b1bba24bd94991ca1fba7fc9978ed7d62fd2849b03e9fdcd7c01ac5316b7c
SSDEEP

3072:nC5Ien021GVGen9BqOtBW7hAMGAU2OJk2e1S95DDoF0tMDsBWbt011gTT:0B92GY9BqOtBW7ht7UtEs5DkhuSkgf

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  turnoff_windefender.exe
- Size
  
  255KB
- MD5
  
  ec3b5834311c0b3ae5af9efb4eaba0cc
- SHA1
  
  ef14d344482d2266eb1764b1d2373d54e63161a9
- SHA256
  
  3ae807cdf1ed10777825dd21274a4c229327802be46bd34633abceaff0cc1b00
- SHA512
  
  e7a290e595b13c6e241804b294d168c5162d6d4b006e76ce0b84db8fae8e6e60d57b1bba24bd94991ca1fba7fc9978ed7d62fd2849b03e9fdcd7c01ac5316b7c
- SSDEEP
  
  3072:nC5Ien021GVGen9BqOtBW7hAMGAU2OJk2e1S95DDoF0tMDsBWbt011gTT:0B92GY9BqOtBW7ht7UtEs5DkhuSkgf
Score

10^/10

evasion trojan
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Disable or Modify Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1