svcready | 547fcfe99ba45c0cc805339365a7b5f1858f2cf208499bccaf6b432da4711660 | Triage

Submit
Reports

Overview

overview

Static

static

file.docm

windows7-x64

file.docm

windows10-2004-x64

Sharing

General

Target

file.doc
Size

3.2MB
Sample

220719-kqe6ksadgm
MD5

9f624e07ac899fe81216f4f03f805d11
SHA1

16c4a5a94a31a116a5fdc4d2c874aad8949e7ec0
SHA256

547fcfe99ba45c0cc805339365a7b5f1858f2cf208499bccaf6b432da4711660
SHA512

8c96378647d1b8337279ec58aff481054a2678173483493e1fc20b956f80e34a5a8f56703596f6fa017b8c3e9d13b695c61eecf455c45952650195cc2dc92f99

Score

10^/10

svcready loader

Static task

static1

Behavioral task

behavioral1

Sample

file.docm

Resource

win7-20220715-en

svcready loader

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

file.docm

Resource

win10v2004-20220718-en

svcready loader

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  file.doc
- Size
  
  3.2MB
- MD5
  
  9f624e07ac899fe81216f4f03f805d11
- SHA1
  
  16c4a5a94a31a116a5fdc4d2c874aad8949e7ec0
- SHA256
  
  547fcfe99ba45c0cc805339365a7b5f1858f2cf208499bccaf6b432da4711660
- SHA512
  
  8c96378647d1b8337279ec58aff481054a2678173483493e1fc20b956f80e34a5a8f56703596f6fa017b8c3e9d13b695c61eecf455c45952650195cc2dc92f99
Score

10^/10

svcready loader
- Detects SVCReady loader
- SVCReady
  SVCReady is a malware loader first seen in April 2022.
  loader svcready
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy