General

  • Target

    ORDER_22727.jar

  • Size

    613KB

  • Sample

    220727-zm6axsdbg7

  • MD5

    80872de57d4b475880ad131d789a8d5c

  • SHA1

    a7b6c34e90a70e1471b128521ae8ad2a42bc3662

  • SHA256

    022734b986c5b56714484e68bba968fa77ee0aa436e1f01a14e16ec985434b74

  • SHA512

    bfd1d2e43fa85c3f6f5fcd38e2cf5bb7b1b8ba353c2d651c578dd193947f4ec4f60ebd74699ccc75cadfddd73d13471e67b5f4473cdd70012e45e1c5ccbb5158

Score
10/10

Malware Config

Targets

    • Target

      ORDER_22727.jar

    • Size

      613KB

    • MD5

      80872de57d4b475880ad131d789a8d5c

    • SHA1

      a7b6c34e90a70e1471b128521ae8ad2a42bc3662

    • SHA256

      022734b986c5b56714484e68bba968fa77ee0aa436e1f01a14e16ec985434b74

    • SHA512

      bfd1d2e43fa85c3f6f5fcd38e2cf5bb7b1b8ba353c2d651c578dd193947f4ec4f60ebd74699ccc75cadfddd73d13471e67b5f4473cdd70012e45e1c5ccbb5158

    Score
    10/10
    • AdWind

      A Java-based RAT family operated as malware-as-a-service.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v6

Tasks