388a7e0d0a3b7d2383a2647a3e5f524af92865cd7a769c10a82e67cf49383f8f | Triage

Resubmissions

02/09/2024, 12:20

240902-ph7m3szdqj 10

02/09/2024, 10:50

240902-mxr5tsycnl 10

02/09/2024, 10:49

240902-mwv54azaqf 10

02/09/2024, 06:43

240902-hg1d2svhld 10

02/09/2024, 06:38

240902-hd4bjavall 10

02/09/2024, 06:35

240902-hcdz9athqr 10

02/09/2024, 06:11

240902-gx4kzaterk 10

02/09/2024, 06:10

240902-gxa9esvdpa 10

02/09/2024, 04:48

240902-fe6ryasbkp 10

02/09/2024, 04:43

240902-fchx4ashlf 10

Sharing

General

Target

Disable Antivirus.reg
Size

1KB
Sample

240902-fchx4ashlf
MD5

56fa36914d26275451971f1557299646
SHA1

db0dd521442622f237f118ec82a888415b89529b
SHA256

388a7e0d0a3b7d2383a2647a3e5f524af92865cd7a769c10a82e67cf49383f8f
SHA512

7d0cf3fff681b9a7ea66eabe73c1e2f479da46df344bab59ced23f510a87a7e044d9146c24c282147cb86869a92d54123c12d6af3499e566dd7cd1894ebc7f02

Score

10^/10

discovery evasion trojan

Malware Config

Targets

- Target
  
  Disable Antivirus.reg
- Size
  
  1KB
- MD5
  
  56fa36914d26275451971f1557299646
- SHA1
  
  db0dd521442622f237f118ec82a888415b89529b
- SHA256
  
  388a7e0d0a3b7d2383a2647a3e5f524af92865cd7a769c10a82e67cf49383f8f
- SHA512
  
  7d0cf3fff681b9a7ea66eabe73c1e2f479da46df344bab59ced23f510a87a7e044d9146c24c282147cb86869a92d54123c12d6af3499e566dd7cd1894ebc7f02
Score

10^/10

discovery evasion trojan
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Disable or Modify Tools

Modify Registry

Credential Access

Discovery

Browser Information Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasiontrojan