Static

static

10

ups-label.jar.msi

windows7_x64

6

ups-label.jar.msi

windows10_x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ups-label.jar

  • Size

    382KB

  • Sample

    200628-4rx2t7sta6

  • MD5

    1eb30fec5a58dc7a6af2c17d7e8327d0

  • SHA1

    277fb1032edb935cb9bd3fbd33a17c83615cedfa

  • SHA256

    51eb64e8719bcd2caba807e8ffe09e9b016ab828f4352f9905a99fc3f3517e82

  • SHA512

    2670b7062f9918fd7b53200e26e25b56cfb8974c0e6a0e7e2720218cee018479ce6855cf57c4d6c89855439ecad9ff0ddce73fb2ac91e524bc2bd98e51f942aa

Score
10/10
rattypersistence

Malware Config

Targets

    • Target

      ups-label.jar

    • Size

      382KB

    • MD5

      1eb30fec5a58dc7a6af2c17d7e8327d0

    • SHA1

      277fb1032edb935cb9bd3fbd33a17c83615cedfa

    • SHA256

      51eb64e8719bcd2caba807e8ffe09e9b016ab828f4352f9905a99fc3f3517e82

    • SHA512

      2670b7062f9918fd7b53200e26e25b56cfb8974c0e6a0e7e2720218cee018479ce6855cf57c4d6c89855439ecad9ff0ddce73fb2ac91e524bc2bd98e51f942aa

    Score
    8/10
    persistence

    • Blacklisted process makes network request

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Modifies service

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks