adwind | 3eb57cd3c204ba1741e4500ef2566f524b10f4da23b3831f0855abcea0987649 | Triage

Submit
Reports

Overview

overview

Static

static

Sorillus.jar

windows11-21h2-x64

8

Sorillus.jar

android-11-x64

Sharing

General

Target

Sorillus.jar
Size

10.1MB
Sample

240404-arqnlahf62
MD5

f9119b4bbb55ce59f43113c71cd177f8
SHA1

1605b453fa74091f92f51691a3dd378c1b67f3fa
SHA256

3eb57cd3c204ba1741e4500ef2566f524b10f4da23b3831f0855abcea0987649
SHA512

b166ce950e2c2bd2f23fe9063656ffd31da66dbd699419a71479d52654bf4113bddd8f51392577470a6f1342cc7546f5474d0765a209ff3b01ae65074d04a650
SSDEEP

196608:oJkKjM0rT/ZiDxU/Mcd8qAbPeGme9WvhAn9QKmMCnoOqpUF:UvjM0pAUEQ/kGde9WJC9QK36oy

Score

10^/10

adwind android discovery

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

Sorillus.jar

Resource

win11-20240221-en

windows11-21h2-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

Sorillus.jar

Resource

android-x64-arm64-20240221-en

android-11-x64

0 signatures

150 seconds

Malware Config

Targets

- Target
  
  Sorillus.jar
- Size
  
  10.1MB
- MD5
  
  f9119b4bbb55ce59f43113c71cd177f8
- SHA1
  
  1605b453fa74091f92f51691a3dd378c1b67f3fa
- SHA256
  
  3eb57cd3c204ba1741e4500ef2566f524b10f4da23b3831f0855abcea0987649
- SHA512
  
  b166ce950e2c2bd2f23fe9063656ffd31da66dbd699419a71479d52654bf4113bddd8f51392577470a6f1342cc7546f5474d0765a209ff3b01ae65074d04a650
- SSDEEP
  
  196608:oJkKjM0rT/ZiDxU/Mcd8qAbPeGme9WvhAn9QKmMCnoOqpUF:UvjM0pAUEQ/kGde9WJC9QK36oy
Score

8^/10

discovery
- Downloads MZ/PE file
- Modifies file permissions
  discovery
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

File and Directory Permissions Modification

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy