svcready | 17f0487ceadb25c4d72e3861ab850c601ac0c4c09a54b103c9074ca86014f4f0 | Triage

Submit
Reports

Overview

overview

Static

static

bikealma_d...2.docm

windows7_x64

bikealma_d...2.docm

windows10-2004_x64

Sharing

General

Target

bikealma_document_20.06.2022.doc
Size

2.6MB
Sample

220620-z7bbaaddh3
MD5

e2237eac90e20fe703806ad6b8221597
SHA1

e18a0dea6b4a10046e3b50d6ab910868c4c52574
SHA256

17f0487ceadb25c4d72e3861ab850c601ac0c4c09a54b103c9074ca86014f4f0
SHA512

bee4041caf22433441cbab32889b703dca6709453b21eb3fdfa2f8f16ab3cd5f8bda056d61858e3a0e4558f9dce63244b5c2c70955e0a15e6038e5239a213c23

Score

10^/10

svcready loader

Static task

static1

Behavioral task

behavioral1

Sample

bikealma_document_20.06.2022.docm

Resource

win7-20220414-en

svcready loader

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

bikealma_document_20.06.2022.docm

Resource

win10v2004-20220414-en

svcready loader

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  bikealma_document_20.06.2022.doc
- Size
  
  2.6MB
- MD5
  
  e2237eac90e20fe703806ad6b8221597
- SHA1
  
  e18a0dea6b4a10046e3b50d6ab910868c4c52574
- SHA256
  
  17f0487ceadb25c4d72e3861ab850c601ac0c4c09a54b103c9074ca86014f4f0
- SHA512
  
  bee4041caf22433441cbab32889b703dca6709453b21eb3fdfa2f8f16ab3cd5f8bda056d61858e3a0e4558f9dce63244b5c2c70955e0a15e6038e5239a213c23
Score

10^/10

svcready loader
- Detects SVCReady loader
- SVCReady
  SVCReady is a malware loader first seen in April 2022.
  loader svcready
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy