General

  • Target

    32a4d47eaa0e86d950ab506be54fde53ccf6ae2a7580e51feb02e530e385da6f

  • Size

    670KB

  • Sample

    220620-gl7s9agcck

  • MD5

    3dbee2f9092fdf0c2790d5c8816ba96b

  • SHA1

    c42aaf0d4bfab92b3cc6b4881d3593bca8d50245

  • SHA256

    32a4d47eaa0e86d950ab506be54fde53ccf6ae2a7580e51feb02e530e385da6f

  • SHA512

    c0692de30f145cd1c9a415144a3f978934314de8847a80f7f10ee7d619a84b4775e7f730bcbdb7e036341204edb41db70dbee07df246a5b37f09dabb1ba13f26

Malware Config

Targets

    • Target

      32a4d47eaa0e86d950ab506be54fde53ccf6ae2a7580e51feb02e530e385da6f

    • Size

      670KB

    • MD5

      3dbee2f9092fdf0c2790d5c8816ba96b

    • SHA1

      c42aaf0d4bfab92b3cc6b4881d3593bca8d50245

    • SHA256

      32a4d47eaa0e86d950ab506be54fde53ccf6ae2a7580e51feb02e530e385da6f

    • SHA512

      c0692de30f145cd1c9a415144a3f978934314de8847a80f7f10ee7d619a84b4775e7f730bcbdb7e036341204edb41db70dbee07df246a5b37f09dabb1ba13f26

    • AdWind

      A Java-based RAT family operated as malware-as-a-service.

    • Adds Run key to start application

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v6

Tasks