Overview

overview

10

Static

static

jahi1264.pn.dll

windows7_x64

10

jahi1264.pn.dll

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    jahi1264.pn

  • Size

    39KB

  • Sample

    210506-gntywl8xnj

  • MD5

    0a8d825d553010e21a0ccaf054b74992

  • SHA1

    b22a0d35636bda3b79e27f9abccef48905a5b025

  • SHA256

    b8212f866c5cdf1a823031e24fe10444aab103d8fb55a25821e1c7c7366e580f

  • SHA512

    910741f5583c2657c1ea496f9c99cf42ceb48c4b477f439396a0dd30707de61f814811a3d628c746bf0219b47a57f2ce44b7f119c729d7dd96f4e2d9d00d121c

Score
10/10
nloaderloader

Malware Config

Targets

    • Target

      jahi1264.pn

    • Size

      39KB

    • MD5

      0a8d825d553010e21a0ccaf054b74992

    • SHA1

      b22a0d35636bda3b79e27f9abccef48905a5b025

    • SHA256

      b8212f866c5cdf1a823031e24fe10444aab103d8fb55a25821e1c7c7366e580f

    • SHA512

      910741f5583c2657c1ea496f9c99cf42ceb48c4b477f439396a0dd30707de61f814811a3d628c746bf0219b47a57f2ce44b7f119c729d7dd96f4e2d9d00d121c

    Score
    10/10
    nloaderloader

    • Nloader

      Simple loader that includes the keyword 'campo' in the URL used to download other families.

      loadernloader

    • Nloader Payload

    • Blocklisted process makes network request

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks