svcready | 492634563551d944bb219f40b9b78694dd23377013023de597047ff4f9ecbff8 | Triage

Submit
Reports

Overview

overview

Static

static

pelagagge_...2.docm

windows7-x64

pelagagge_...2.docm

windows10-2004-x64

Sharing

General

Target

pelagagge_doc_22.07.22.doc
Size

3.3MB
Sample

220723-trcxaaffcl
MD5

f39f8d7d2f12d79fefd14ea74c995d61
SHA1

c6fe79e4bb53730a6e6ffccba595974b55a9fb79
SHA256

492634563551d944bb219f40b9b78694dd23377013023de597047ff4f9ecbff8
SHA512

a7a32d83968d591e3b8bcad5280e26c7207c19bf9c2032d401df1c636e245e2770e27a5c4e24cffc85b9a4ab2444bee81842c6af2c29554a62ab1f7ef1bd7b6b

Score

10^/10

svcready loader

Static task

static1

Behavioral task

behavioral1

Sample

pelagagge_doc_22.07.22.docm

Resource

win7-20220718-en

svcready loader

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

pelagagge_doc_22.07.22.docm

Resource

win10v2004-20220721-en

svcready loader

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  pelagagge_doc_22.07.22.doc
- Size
  
  3.3MB
- MD5
  
  f39f8d7d2f12d79fefd14ea74c995d61
- SHA1
  
  c6fe79e4bb53730a6e6ffccba595974b55a9fb79
- SHA256
  
  492634563551d944bb219f40b9b78694dd23377013023de597047ff4f9ecbff8
- SHA512
  
  a7a32d83968d591e3b8bcad5280e26c7207c19bf9c2032d401df1c636e245e2770e27a5c4e24cffc85b9a4ab2444bee81842c6af2c29554a62ab1f7ef1bd7b6b
Score

10^/10

svcready loader
- Detects SVCReady loader
- SVCReady
  SVCReady is a malware loader first seen in April 2022.
  loader svcready
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy