svcready | e1ee3b07c0e80b16561762ffc169bcc5061a717c43f8e5f8020f30e530e171b2 | Triage

Submit
Reports

Overview

overview

Static

static

andreadema...2.docm

windows7-x64

andreadema...2.docm

windows10-2004-x64

Sharing

General

Target

andreademarchi invoice 26.07.22.doc
Size

3.4MB
Sample

220726-syl8vsbaem
MD5

9065445fe49c64eb2ad67f624188e237
SHA1

5a1f87c7e011c02e88ace79a8e8e2b4d16605796
SHA256

e1ee3b07c0e80b16561762ffc169bcc5061a717c43f8e5f8020f30e530e171b2
SHA512

7b7a296741c661ef11acd1a6a5d959be2f63750c2c7980dee688e83c0a44359f2fc0cf392ff989764c885d0ecd1b535a74c572bd929138795dde68eb3ed207c2

Score

10^/10

svcready loader

Static task

static1

Behavioral task

behavioral1

Sample

andreademarchi invoice 26.07.22.docm

Resource

win7-20220715-en

svcready loader

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

andreademarchi invoice 26.07.22.docm

Resource

win10v2004-20220721-en

svcready loader

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  andreademarchi invoice 26.07.22.doc
- Size
  
  3.4MB
- MD5
  
  9065445fe49c64eb2ad67f624188e237
- SHA1
  
  5a1f87c7e011c02e88ace79a8e8e2b4d16605796
- SHA256
  
  e1ee3b07c0e80b16561762ffc169bcc5061a717c43f8e5f8020f30e530e171b2
- SHA512
  
  7b7a296741c661ef11acd1a6a5d959be2f63750c2c7980dee688e83c0a44359f2fc0cf392ff989764c885d0ecd1b535a74c572bd929138795dde68eb3ed207c2
Score

10^/10

svcready loader
- Detects SVCReady loader
- SVCReady
  SVCReady is a malware loader first seen in April 2022.
  loader svcready
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy