General

  • Target

    53a375e6bb094dfb1f3ce81677fa7f558ac7ac1436c8926f4e9a41c906b28d8b

  • Size

    511KB

  • Sample

    220727-a44qzsgcfq

  • MD5

    41a1dd079256171d467b4e3fdf0ca0a3

  • SHA1

    e77231e8f543d654119ad4dc5bd68ef4cf996df2

  • SHA256

    53a375e6bb094dfb1f3ce81677fa7f558ac7ac1436c8926f4e9a41c906b28d8b

  • SHA512

    9f785fdebd056626d44b0f3674a04839697a6f7ef0d3932ffb4e0469442b33a3abad30a046365b8a51c4f4a1e63410880afc747cda44ba4631e0a851e36f5af0

Malware Config

Targets

    • Target

      53a375e6bb094dfb1f3ce81677fa7f558ac7ac1436c8926f4e9a41c906b28d8b

    • Size

      511KB

    • MD5

      41a1dd079256171d467b4e3fdf0ca0a3

    • SHA1

      e77231e8f543d654119ad4dc5bd68ef4cf996df2

    • SHA256

      53a375e6bb094dfb1f3ce81677fa7f558ac7ac1436c8926f4e9a41c906b28d8b

    • SHA512

      9f785fdebd056626d44b0f3674a04839697a6f7ef0d3932ffb4e0469442b33a3abad30a046365b8a51c4f4a1e63410880afc747cda44ba4631e0a851e36f5af0

    • AdWind

      A Java-based RAT family operated as malware-as-a-service.

    • Adds Run key to start application

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v6

Tasks