General

  • Target

    f687cab6a9f79c6ed277ebe6a158d2a906ba116e91393ee2aa0ea2405f6ae8d0

  • Size

    62KB

  • Sample

    221128-xljz7ada5v

  • MD5

    e2994b09432bde05855e3b41e18a6994

  • SHA1

    bb0ca27991ec8d45bb3f4ab0c00ffdecd9c3d9af

  • SHA256

    f687cab6a9f79c6ed277ebe6a158d2a906ba116e91393ee2aa0ea2405f6ae8d0

  • SHA512

    6ca5f501c72cc19ff92b047a37af1b82bb7a6fc54654d753444b5f322d67e2c411dec1432be328d71830e48d7a3b603a55741023e0e95f42de998b20d38639ad

  • SSDEEP

    1536:ciwlJBQ1AVnr6quaCn3wHaw5fMWMXND5uihUcOJFqNxdTU:cfXQ1Cn+qubAHaw5MW0pkmuPOvTU

Malware Config

Targets

    • Target

      f687cab6a9f79c6ed277ebe6a158d2a906ba116e91393ee2aa0ea2405f6ae8d0

    • Size

      62KB

    • MD5

      e2994b09432bde05855e3b41e18a6994

    • SHA1

      bb0ca27991ec8d45bb3f4ab0c00ffdecd9c3d9af

    • SHA256

      f687cab6a9f79c6ed277ebe6a158d2a906ba116e91393ee2aa0ea2405f6ae8d0

    • SHA512

      6ca5f501c72cc19ff92b047a37af1b82bb7a6fc54654d753444b5f322d67e2c411dec1432be328d71830e48d7a3b603a55741023e0e95f42de998b20d38639ad

    • SSDEEP

      1536:ciwlJBQ1AVnr6quaCn3wHaw5fMWMXND5uihUcOJFqNxdTU:cfXQ1Cn+qubAHaw5MW0pkmuPOvTU

    • AdWind

      A Java-based RAT family operated as malware-as-a-service.

    • JAR file contains resources related to AdWind

      This JAR file potentially contains loader stubs used by the AdWind RAT.

    • Sets file to hidden

      Modifies file attributes to stop it showing in Explorer etc.

    • Adds Run key to start application

    • Drops desktop.ini file(s)

MITRE ATT&CK Enterprise v6

Tasks