Static

static

10

New.Shipme...ar.msi

windows7_x64

7

New.Shipme...ar.msi

windows10_x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    New.Shipment.Delivery.jar

  • Size

    967KB

  • Sample

    200628-ws5kwspvdj

  • MD5

    fa8118a9fa20a17018cb2f60fd28a5b7

  • SHA1

    548b525309b3746b808c4645f7a727af2dc1ec0c

  • SHA256

    a2e6fae445f2fc021874a54a9525a0a35004e25c6df1a8648eb602868de1b8e9

  • SHA512

    b2c61459013ab978e12ac7c3ba1a39396d06917b85dfd2c5997ddddf2b78eee43032355223afe2a52b07de296af27dc7c2497de05e28b215992bb21f7c441d70

Score
10/10
rattymacropersistence

Malware Config

Targets

    • Target

      New.Shipment.Delivery.jar

    • Size

      967KB

    • MD5

      fa8118a9fa20a17018cb2f60fd28a5b7

    • SHA1

      548b525309b3746b808c4645f7a727af2dc1ec0c

    • SHA256

      a2e6fae445f2fc021874a54a9525a0a35004e25c6df1a8648eb602868de1b8e9

    • SHA512

      b2c61459013ab978e12ac7c3ba1a39396d06917b85dfd2c5997ddddf2b78eee43032355223afe2a52b07de296af27dc7c2497de05e28b215992bb21f7c441d70

    Score
    8/10
    persistence

    • Blacklisted process makes network request

    • Loads dropped DLL

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Modifies service

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks