Overview

overview

10

Static

static

10

FACTURA.jar

windows7-x64

10

FACTURA.jar

windows10-2004-x64

10

Resubmissions

16/04/2024, 20:38

240416-ze8q3sca82 10

16/04/2024, 17:36

240416-v6j5ksgc72 10

Sharing

Copy URL Twitter E-mail

General

  • Target

    FACTURA.jar

  • Size

    643KB

  • Sample

    240416-v6j5ksgc72

  • MD5

    df2d12625998b7c51a4eab26d3a42e7e

  • SHA1

    3d0403ab389c056beae99b7e71cca51ad521c870

  • SHA256

    380c08c3471775e3eccdcd3c755074457e7cdafc02e92e7b9ceaad8b500ea8a6

  • SHA512

    af1ead62e893127323e6b86abad37ad804928bd96e9dbaac618cc737490efa0e61329d8dfb636fa9fd215596721ad04f3e63a2c04a909e895af8c08d02f1e75d

  • SSDEEP

    12288:R/eAo7rK7tfAKc6Mr+DpxFGs/HfTeg1jPZc+AR6AptwyoFGVKBzG1KpUfsRxrq40:no7rKJcPr+wIHfzxcbTLwyoFuKBAURx4

Score
10/10
adwinddiscoverytrojan

Malware Config

Targets

    • Target

      FACTURA.jar

    • Size

      643KB

    • MD5

      df2d12625998b7c51a4eab26d3a42e7e

    • SHA1

      3d0403ab389c056beae99b7e71cca51ad521c870

    • SHA256

      380c08c3471775e3eccdcd3c755074457e7cdafc02e92e7b9ceaad8b500ea8a6

    • SHA512

      af1ead62e893127323e6b86abad37ad804928bd96e9dbaac618cc737490efa0e61329d8dfb636fa9fd215596721ad04f3e63a2c04a909e895af8c08d02f1e75d

    • SSDEEP

      12288:R/eAo7rK7tfAKc6Mr+DpxFGs/HfTeg1jPZc+AR6AptwyoFGVKBzG1KpUfsRxrq40:no7rKJcPr+wIHfzxcbTLwyoFuKBAURx4

    Score
    10/10
    adwindtrojandiscovery

    • AdWind

      A Java-based RAT family operated as malware-as-a-service.

      trojanadwind

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Modifies file permissions

      discovery

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks