General

  • Target

    5d3981faf139d6f03eed547b74213479badb98f5060a918f3960cbf2ca22461e

  • Size

    535KB

  • Sample

    220801-dbxnrageam

  • MD5

    843ab4f1414867c98c74ff0ad3fadbf2

  • SHA1

    df497bef25710780f8e38ddace9015516c71716d

  • SHA256

    5d3981faf139d6f03eed547b74213479badb98f5060a918f3960cbf2ca22461e

  • SHA512

    b13c0acfe3a8d3710c66062f41a0f0a18dee270cc44d3b7d9edd7a81ab3a000e9841b49029d96593bc3bb93b052be118394850a1a00b864a63d2a1abeed82722

Malware Config

Targets

    • Target

      5d3981faf139d6f03eed547b74213479badb98f5060a918f3960cbf2ca22461e

    • Size

      535KB

    • MD5

      843ab4f1414867c98c74ff0ad3fadbf2

    • SHA1

      df497bef25710780f8e38ddace9015516c71716d

    • SHA256

      5d3981faf139d6f03eed547b74213479badb98f5060a918f3960cbf2ca22461e

    • SHA512

      b13c0acfe3a8d3710c66062f41a0f0a18dee270cc44d3b7d9edd7a81ab3a000e9841b49029d96593bc3bb93b052be118394850a1a00b864a63d2a1abeed82722

    • AdWind

      A Java-based RAT family operated as malware-as-a-service.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v6

Tasks