svcready | ee9f450ad795bd9caf1ad830a3be0ca0c6f3926aa59d8e9fab80e1d48fac2e27 | Triage

Submit
Reports

Overview

overview

Static

static

confinalp....2.docm

windows7-x64

8

confinalp....2.docm

windows10-2004-x64

Sharing

General

Target

confinalp.file.26.07.22.doc
Size

3.3MB
Sample

220726-swxltaeca7
MD5

3e43e586ceb8faeb735fe86e8945cd92
SHA1

9e92bc926332cba7e7d00109b6edda386bab2f75
SHA256

ee9f450ad795bd9caf1ad830a3be0ca0c6f3926aa59d8e9fab80e1d48fac2e27
SHA512

dbfc2462f6e9ea197d0d3944dc3c55e8f4fd6a53d8b2dfbc8fd566f10857c2a0094c8bb1b603a268afdd12f2c82d2839e6c2bac558a782653fc234ca20d5bc74

Score

10^/10

svcready loader

Static task

static1

Behavioral task

behavioral1

Sample

confinalp.file.26.07.22.docm

Resource

win7-20220715-en

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

confinalp.file.26.07.22.docm

Resource

win10v2004-20220722-en

svcready loader

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  confinalp.file.26.07.22.doc
- Size
  
  3.3MB
- MD5
  
  3e43e586ceb8faeb735fe86e8945cd92
- SHA1
  
  9e92bc926332cba7e7d00109b6edda386bab2f75
- SHA256
  
  ee9f450ad795bd9caf1ad830a3be0ca0c6f3926aa59d8e9fab80e1d48fac2e27
- SHA512
  
  dbfc2462f6e9ea197d0d3944dc3c55e8f4fd6a53d8b2dfbc8fd566f10857c2a0094c8bb1b603a268afdd12f2c82d2839e6c2bac558a782653fc234ca20d5bc74
Score

10^/10

svcready loader
- Detects SVCReady loader
- SVCReady
  SVCReady is a malware loader first seen in April 2022.
  loader svcready
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy