Overview

overview

10

Static

static

3

7808c4be13...2e.exe

windows7-x64

10

7808c4be13...2e.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    7808c4be131e543caf2e9631b4c0662dc3dc9bab48b558fd8aab81190aa9ea2e

  • Size

    629KB

  • Sample

    241105-aef9dsspem

  • MD5

    793cfdff72eb3163f704c3f9b3b3c717

  • SHA1

    61534379b1cd8d8f8280b676972c28b30d7a0484

  • SHA256

    7808c4be131e543caf2e9631b4c0662dc3dc9bab48b558fd8aab81190aa9ea2e

  • SHA512

    c4f532662fa063fd05a115e8a6c883204dbc2fab2c66378d448625d979a730d719d620bee3988bffec5bc4ea7bf46e6bafc0b0b1bcead0082f44ff834aa306ea

  • SSDEEP

    12288:0pdVfrKp5SBUOvkD/gKVGDHszAVXMG2n+z2x0K73AVdxGbw6H3MLVi:0pd9K7MlGXwz+AV8G2OpvcwL

Score
10/10
adwindtrojan

Malware Config

Targets

    • Target

      7808c4be131e543caf2e9631b4c0662dc3dc9bab48b558fd8aab81190aa9ea2e

    • Size

      629KB

    • MD5

      793cfdff72eb3163f704c3f9b3b3c717

    • SHA1

      61534379b1cd8d8f8280b676972c28b30d7a0484

    • SHA256

      7808c4be131e543caf2e9631b4c0662dc3dc9bab48b558fd8aab81190aa9ea2e

    • SHA512

      c4f532662fa063fd05a115e8a6c883204dbc2fab2c66378d448625d979a730d719d620bee3988bffec5bc4ea7bf46e6bafc0b0b1bcead0082f44ff834aa306ea

    • SSDEEP

      12288:0pdVfrKp5SBUOvkD/gKVGDHszAVXMG2n+z2x0K73AVdxGbw6H3MLVi:0pd9K7MlGXwz+AV8G2OpvcwL

    Score
    10/10
    adwindtrojan

    • AdWind

      A Java-based RAT family operated as malware-as-a-service.

      trojanadwind

    • Adwind family

      adwind

    • Class file contains resources related to AdWind

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks