adwind | 3a2ee2910bfc956a9b8f57c92ff0a18c916f6fd60b0aa37a7b98e04caf41226b | Triage

Submit
Reports

Overview

overview

Static

static

1234.jar

windows11-21h2-x64

7

Sharing

General

Target

1234.jar
Size

639KB
Sample

240630-bcbfssvbjq
MD5

e85f4f8c282e15bee2093640bd509058
SHA1

d6cf12345b290da0fb4253d393dda4139c014a13
SHA256

3a2ee2910bfc956a9b8f57c92ff0a18c916f6fd60b0aa37a7b98e04caf41226b
SHA512

eade08fa08fc363a840b034160ffd0f924672a07b6b5bada0c88922da9fdc74eb9db4aa2eb1e6ac3e861023a6ad014eb4a4bebb98c8e74c0840e7675106fa52b
SSDEEP

12288:r/lAQC/SAq1MD4Ps08Tzgs/RRz+du+NuBfgQlSRo53GuM2RMS97DQd:r/iQG21g4ETzgsTKXuB4WXGuxRP97DQd

Score

10^/10

adwind discovery

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

1234.jar

Resource

win11-20240611-en

windows11-21h2-x64

4 signatures

300 seconds

Malware Config

Targets

- Target
  
  1234.jar
- Size
  
  639KB
- MD5
  
  e85f4f8c282e15bee2093640bd509058
- SHA1
  
  d6cf12345b290da0fb4253d393dda4139c014a13
- SHA256
  
  3a2ee2910bfc956a9b8f57c92ff0a18c916f6fd60b0aa37a7b98e04caf41226b
- SHA512
  
  eade08fa08fc363a840b034160ffd0f924672a07b6b5bada0c88922da9fdc74eb9db4aa2eb1e6ac3e861023a6ad014eb4a4bebb98c8e74c0840e7675106fa52b
- SSDEEP
  
  12288:r/lAQC/SAq1MD4Ps08Tzgs/RRz+du+NuBfgQlSRo53GuM2RMS97DQd:r/iQG21g4ETzgsTKXuB4WXGuxRP97DQd
Score

7^/10

discovery
- Modifies file permissions
  discovery
- Legitimate hosting services abused for malware hosting/C2
behavioral1

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

File and Directory Permissions Modification

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Web Service

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

© 2018-2024

Terms | Privacy