adwind | 20dcce3712eb2d346372305c4a7f159d42d5c299ff009587ee99e521633a2684 | Triage

Sharing

General

Target

MeteorClient.jar
Size

639KB
Sample

240404-crmcaace53
MD5

a924cadbe22a3752ac18c9b749243459
SHA1

23d686d927abcd6978b4224e19f0d03fa19937e2
SHA256

20dcce3712eb2d346372305c4a7f159d42d5c299ff009587ee99e521633a2684
SHA512

bd1611bf0789cb253a8bd20e4d2e2aa1c2e72f09768707e14540516cdfbcb5c3acdc8f4ffd9c20b8924b998d6003ab350046898a9bd603214fccf3f505aa1786
SSDEEP

12288:vfNMQ+/WM+9Qb4r0Y0zvgo/NRX+NmON2p7gopiR4Z3au82lcSBzDYx:vfaQSe9I4wvvgoXGT2pciHauBlfBzDYx

Score

10^/10

adwind discovery

Malware Config

Targets

- Target
  
  MeteorClient.jar
- Size
  
  639KB
- MD5
  
  a924cadbe22a3752ac18c9b749243459
- SHA1
  
  23d686d927abcd6978b4224e19f0d03fa19937e2
- SHA256
  
  20dcce3712eb2d346372305c4a7f159d42d5c299ff009587ee99e521633a2684
- SHA512
  
  bd1611bf0789cb253a8bd20e4d2e2aa1c2e72f09768707e14540516cdfbcb5c3acdc8f4ffd9c20b8924b998d6003ab350046898a9bd603214fccf3f505aa1786
- SSDEEP
  
  12288:vfNMQ+/WM+9Qb4r0Y0zvgo/NRX+NmON2p7gopiR4Z3au82lcSBzDYx:vfaQSe9I4wvvgoXGT2pciHauBlfBzDYx
Score

7^/10

discovery
- Modifies file permissions
  discovery
behavioral1

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

File and Directory Permissions Modification

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1