svcready | ab5e161a78e6b7cba0b1d3f3a420a471e5a9b667705fb4e5adc425cca695db9d | Triage

Submit
Reports

Overview

overview

Static

static

[redacted]...2.docm

windows7-x64

[redacted]...2.docm

windows10-2004-x64

Sharing

General

Target

[redacted]-document-26.07.22.doc
Size

3.4MB
Sample

220727-m1nxksdagk
MD5

009f8bc97181141c0fb385497f8c218c
SHA1

71b36c8c12ee17f418171410b15a874c9609109f
SHA256

ab5e161a78e6b7cba0b1d3f3a420a471e5a9b667705fb4e5adc425cca695db9d
SHA512

c22ffbba9b629f8313cc7daec02932206c4c7c1281ab823349bb0d5a69baf2f0fd7c2676baf18a004f9812f17ba605695bae383bc3ff10ee273b495a6369ea88

Score

10^/10

svcready loader

Static task

static1

Behavioral task

behavioral1

Sample

[redacted]-document-26.07.22.docm

Resource

win7-20220715-en

svcready loader

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

[redacted]-document-26.07.22.docm

Resource

win10v2004-20220721-en

svcready loader

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  [redacted]-document-26.07.22.doc
- Size
  
  3.4MB
- MD5
  
  009f8bc97181141c0fb385497f8c218c
- SHA1
  
  71b36c8c12ee17f418171410b15a874c9609109f
- SHA256
  
  ab5e161a78e6b7cba0b1d3f3a420a471e5a9b667705fb4e5adc425cca695db9d
- SHA512
  
  c22ffbba9b629f8313cc7daec02932206c4c7c1281ab823349bb0d5a69baf2f0fd7c2676baf18a004f9812f17ba605695bae383bc3ff10ee273b495a6369ea88
Score

10^/10

svcready loader
- Detects SVCReady loader
- SVCReady
  SVCReady is a malware loader first seen in April 2022.
  loader svcready
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy