svcready | b3ebe1f830bf9881e2160ea2b0f9d798f21b2c0ba110f8192eabad46ff837b8f | Triage

Submit
Reports

Overview

overview

Static

static

gruppofran...2.docm

windows7-x64

gruppofran...2.docm

windows10-1703-x64

Sharing

General

Target

gruppofrancescomaggini_invoice_22.07.2022.doc
Size

3.3MB
Sample

220722-phd1rsfcfk
MD5

254af7966fbfb605e37a87aced2ca222
SHA1

5274e328b810cd31e7fa58624efe8ecc192a0d33
SHA256

b3ebe1f830bf9881e2160ea2b0f9d798f21b2c0ba110f8192eabad46ff837b8f
SHA512

20c4256c5a4a0101d035aefefed34205338e1dbef55813e3dc1c8465378bc874cf02260be5b3b8f9b3104fb7d49445072180d9351810af6e68a2202fb666d201

Score

10^/10

svcready loader

Static task

static1

Behavioral task

behavioral1

Sample

gruppofrancescomaggini_invoice_22.07.2022.docm

Resource

win7-20220718-en

svcready loader

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

gruppofrancescomaggini_invoice_22.07.2022.docm

Resource

win10-20220414-en

svcready loader

windows10-1703-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  gruppofrancescomaggini_invoice_22.07.2022.doc
- Size
  
  3.3MB
- MD5
  
  254af7966fbfb605e37a87aced2ca222
- SHA1
  
  5274e328b810cd31e7fa58624efe8ecc192a0d33
- SHA256
  
  b3ebe1f830bf9881e2160ea2b0f9d798f21b2c0ba110f8192eabad46ff837b8f
- SHA512
  
  20c4256c5a4a0101d035aefefed34205338e1dbef55813e3dc1c8465378bc874cf02260be5b3b8f9b3104fb7d49445072180d9351810af6e68a2202fb666d201
Score

10^/10

svcready loader
- Detects SVCReady loader
- SVCReady
  SVCReady is a malware loader first seen in April 2022.
  loader svcready
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy