adwind | e1400af60f1a0a76a2d0d47b8bb9425265441f05118469a55598b2233276200f | Triage

Submit
Reports

Overview

overview

Static

static

3

arw.exe

windows11-21h2-x64

Sharing

General

Target

arw.exe
Size

629KB
Sample

241023-zxe7gszbqd
MD5

ca7cbed2db2ddc355d1a991ae33f9b7b
SHA1

7720c740b3f5f579acaae6cd152602d4b1fc62b5
SHA256

e1400af60f1a0a76a2d0d47b8bb9425265441f05118469a55598b2233276200f
SHA512

c0e0205a0657f4788d521305066ca587eed53f85ffb92c38d0231c051faf87b73acae67e433b9129b3d11daca02a0a5cf3d7bde20030b0f61ff83ff2cabd5f6a
SSDEEP

12288:IpdVfrKp5SBUOvkD/gKVGDHszAVXMG2n+z2x0K73fsZOXFg:Ipd9K7MlGXwz+AV8G2OpQSy

Score

10^/10

adwind discovery trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

arw.exe

Resource

win11-20241007-en

adwind discovery trojan

windows11-21h2-x64

16 signatures

150 seconds

Malware Config

Targets

- Target
  
  arw.exe
- Size
  
  629KB
- MD5
  
  ca7cbed2db2ddc355d1a991ae33f9b7b
- SHA1
  
  7720c740b3f5f579acaae6cd152602d4b1fc62b5
- SHA256
  
  e1400af60f1a0a76a2d0d47b8bb9425265441f05118469a55598b2233276200f
- SHA512
  
  c0e0205a0657f4788d521305066ca587eed53f85ffb92c38d0231c051faf87b73acae67e433b9129b3d11daca02a0a5cf3d7bde20030b0f61ff83ff2cabd5f6a
- SSDEEP
  
  12288:IpdVfrKp5SBUOvkD/gKVGDHszAVXMG2n+z2x0K73fsZOXFg:Ipd9K7MlGXwz+AV8G2OpQSy
Score

10^/10

adwind discovery trojan
- AdWind
  A Java-based RAT family operated as malware-as-a-service.
  trojan adwind
- Class file contains resources related to AdWind
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

adwinddiscoverytrojan

© 2018-2025

Terms | Privacy