svcready | 5956a0a7da895b9207e8efc98d7d6cc54123b2a0d66e1f5c6b73e9dcb5755b94 | Triage

Submit
Reports

Overview

overview

Static

static

[redacted]...7.docm

windows7-x64

8

[redacted]...7.docm

windows10-2004-x64

Sharing

General

Target

[redacted]-doc-26.07.doc
Size

3.4MB
Sample

220727-mz4xeagfe7
MD5

68e8afb2d86bbbb577387d87290b406c
SHA1

ce2257fa3a3dd898c87db315d272f82fd985f13d
SHA256

5956a0a7da895b9207e8efc98d7d6cc54123b2a0d66e1f5c6b73e9dcb5755b94
SHA512

ec1feb1697f57d3d36a4be569157d785a7c208a0dd0e0a4d78b86fda4c8955b13fa64b87562c429fa6a83c617ead9bd29cd1626681629ab412f116f3d3c5b19b

Score

10^/10

svcready loader

Static task

static1

Behavioral task

behavioral1

Sample

[redacted]-doc-26.07.docm

Resource

win7-20220718-en

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

[redacted]-doc-26.07.docm

Resource

win10v2004-20220721-en

svcready loader

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  [redacted]-doc-26.07.doc
- Size
  
  3.4MB
- MD5
  
  68e8afb2d86bbbb577387d87290b406c
- SHA1
  
  ce2257fa3a3dd898c87db315d272f82fd985f13d
- SHA256
  
  5956a0a7da895b9207e8efc98d7d6cc54123b2a0d66e1f5c6b73e9dcb5755b94
- SHA512
  
  ec1feb1697f57d3d36a4be569157d785a7c208a0dd0e0a4d78b86fda4c8955b13fa64b87562c429fa6a83c617ead9bd29cd1626681629ab412f116f3d3c5b19b
Score

10^/10

svcready loader
- Detects SVCReady loader
- SVCReady
  SVCReady is a malware loader first seen in April 2022.
  loader svcready
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy