General

  • Target

    46764152b08a2e9b996e894101e9b35df0bfa396bc1b3d2c9e80bf11c20ac79d

  • Size

    659KB

  • Sample

    220707-kl179ahdbk

  • MD5

    291f0f05bf663ceec6441542fe13f8ce

  • SHA1

    b1da41305a483d6a0e038d49e78153bbfc28f12b

  • SHA256

    46764152b08a2e9b996e894101e9b35df0bfa396bc1b3d2c9e80bf11c20ac79d

  • SHA512

    7b0196432cb43817f24f29f7fb6d0a4a37fbc19d67654b76e51e9a6579b8e1e0121eaf2b7d1d4302b6aa02f55865e67b3c6964d90faed227ed7540674340e89d

Malware Config

Targets

    • Target

      46764152b08a2e9b996e894101e9b35df0bfa396bc1b3d2c9e80bf11c20ac79d

    • Size

      659KB

    • MD5

      291f0f05bf663ceec6441542fe13f8ce

    • SHA1

      b1da41305a483d6a0e038d49e78153bbfc28f12b

    • SHA256

      46764152b08a2e9b996e894101e9b35df0bfa396bc1b3d2c9e80bf11c20ac79d

    • SHA512

      7b0196432cb43817f24f29f7fb6d0a4a37fbc19d67654b76e51e9a6579b8e1e0121eaf2b7d1d4302b6aa02f55865e67b3c6964d90faed227ed7540674340e89d

    • AdWind

      A Java-based RAT family operated as malware-as-a-service.

    • Adds Run key to start application

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v6

Tasks