639ee6e0d9338cb339c804d48e759e20be2a9f6fe09a74c8531e1373e239a644

General

Target

DHL Notification.jar
Size

100KB
MD5

0917fbd208a8645f6baf6d5aadd62ed0
SHA1

00cb52652623edec170cca21a2fac207af1d66a4
SHA256

639ee6e0d9338cb339c804d48e759e20be2a9f6fe09a74c8531e1373e239a644
SHA512

2cc7d67a1cc6b36e215585bd85b98ae83fdf743c19df7e42ecd6a7f2b73335cef8890742dfc478399245374434730471ff3e7d6d85d7e6008733ad7dbfbef188

Score

4^/10

Malware Config

Signatures

Drops file in Program Files directory 12 IoCs

Processes:

java.exe

description	ioc	process
File opened for modification	C:\Program Files\Java\jre1.8.0_66\bin\server\dll\jvm.pdb	java.exe
File opened for modification	C:\Program Files\Java\jre1.8.0_66\bin\server\symbols\dll\jvm.pdb	java.exe
File opened for modification	C:\Program Files\Java\jre1.8.0_66\bin\dll\jvm.pdb	java.exe
File opened for modification	C:\Program Files\Java\jre1.8.0_66\bin\symbols\dll\jvm.pdb	java.exe
File opened for modification	C:\Program Files\Java\jre1.8.0_66\bin\ntdll.pdb	java.exe
File opened for modification	C:\Program Files\Java\jre1.8.0_66\bin\dll\ntdll.pdb	java.exe
File opened for modification	C:\Program Files\Java\jre1.8.0_66\bin\server\jvm.pdb	java.exe
File opened for modification	C:\Program Files\Java\jre1.8.0_66\bin\jvm.pdb	java.exe
File opened for modification	C:\Program Files\Java\jre1.8.0_66\bin\server\ntdll.pdb	java.exe
File opened for modification	C:\Program Files\Java\jre1.8.0_66\bin\server\dll\ntdll.pdb	java.exe
File opened for modification	C:\Program Files\Java\jre1.8.0_66\bin\server\symbols\dll\ntdll.pdb	java.exe
File opened for modification	C:\Program Files\Java\jre1.8.0_66\bin\symbols\dll\ntdll.pdb	java.exe

C:\ProgramData\Oracle\Java\javapath\java.exe
java -jar "C:\Users\Admin\AppData\Local\Temp\DHL Notification.jar"
1⤵
- Drops file in Program Files directory
PID:4064

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/4064-114-0x00000000028E0000-0x0000000002B50000-memory.dmp

Filesize
2.4MB

Download
memory/4064-115-0x0000000000C70000-0x0000000000C71000-memory.dmp

Filesize
4KB

Download
memory/4064-116-0x0000000000C70000-0x0000000000C71000-memory.dmp

Filesize
4KB

Download
memory/4064-117-0x0000000002B50000-0x0000000002B60000-memory.dmp

Filesize
64KB

Download
memory/4064-118-0x0000000002BA0000-0x0000000002BB0000-memory.dmp

Filesize
64KB

Download
memory/4064-119-0x0000000002BC0000-0x0000000002BD0000-memory.dmp

Filesize
64KB

Download
memory/4064-120-0x0000000002B60000-0x0000000002B70000-memory.dmp

Filesize
64KB

Download
memory/4064-121-0x0000000002BD0000-0x0000000002BE0000-memory.dmp

Filesize
64KB

Download
memory/4064-122-0x0000000002B70000-0x0000000002B80000-memory.dmp

Filesize
64KB

Download
memory/4064-123-0x0000000002B80000-0x0000000002B90000-memory.dmp

Filesize
64KB

Download
memory/4064-124-0x0000000002B90000-0x0000000002BA0000-memory.dmp

Filesize
64KB

Download
memory/4064-125-0x0000000002BB0000-0x0000000002BC0000-memory.dmp

Filesize
64KB

Download
memory/4064-128-0x0000000002BE0000-0x0000000002BF0000-memory.dmp

Filesize
64KB

Download
memory/4064-130-0x0000000002C30000-0x0000000002C40000-memory.dmp

Filesize
64KB

Download
memory/4064-131-0x0000000002BF0000-0x0000000002C00000-memory.dmp

Filesize
64KB

Download
memory/4064-133-0x0000000002C40000-0x0000000002C50000-memory.dmp

Filesize
64KB

Download
memory/4064-134-0x0000000000C70000-0x0000000000C71000-memory.dmp

Filesize
4KB

Download
memory/4064-135-0x0000000002C60000-0x0000000002C70000-memory.dmp

Filesize
64KB

Download
memory/4064-136-0x0000000000C70000-0x0000000000C71000-memory.dmp

Filesize
4KB

Download
memory/4064-137-0x0000000002C00000-0x0000000002C10000-memory.dmp

Filesize
64KB

Download
memory/4064-139-0x0000000002C10000-0x0000000002C20000-memory.dmp

Filesize
64KB

Download
memory/4064-140-0x0000000000C70000-0x0000000000C71000-memory.dmp

Filesize
4KB

Download
memory/4064-141-0x0000000000C70000-0x0000000000C71000-memory.dmp

Filesize
4KB

Download
memory/4064-142-0x0000000002C20000-0x0000000002C30000-memory.dmp

Filesize
64KB

Download
memory/4064-144-0x0000000000C70000-0x0000000000C71000-memory.dmp

Filesize
4KB

Download
memory/4064-143-0x0000000002C50000-0x0000000002C60000-memory.dmp

Filesize
64KB

Download
memory/4064-145-0x0000000000C70000-0x0000000000C71000-memory.dmp

Filesize
4KB

Download
memory/4064-146-0x0000000000C70000-0x0000000000C71000-memory.dmp

Filesize
4KB

Download
memory/4064-147-0x0000000000C70000-0x0000000000C71000-memory.dmp

Filesize
4KB

Download
memory/4064-148-0x0000000002C70000-0x0000000002C80000-memory.dmp

Filesize
64KB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads