3f8975af51c5028a28097bd0fecc58a92f083abaa347c1f3565fe0309f0286c3

General

Target

shipment documents.jar
Size

101KB
MD5

397104fac578a0ef2984ccd0483595b9
SHA1

f691f3345cfe94c9e0cbc115ea60d4374e1bdd9d
SHA256

3f8975af51c5028a28097bd0fecc58a92f083abaa347c1f3565fe0309f0286c3
SHA512

9821581b80896818d1d36c3cc3bb20b1ec9045d8f8ebb6aeffd57f45b17984779ac214fcb8ea49f4665287ef6237ae38ace9c211894b04bc469ace1e2ce588eb

Score

4^/10

Malware Config

Signatures

Drops file in Program Files directory 12 IoCs

Processes:

java.exe

description	ioc	process
File opened for modification	C:\Program Files\Java\jre1.8.0_66\bin\server\symbols\dll\jvm.pdb	java.exe
File opened for modification	C:\Program Files\Java\jre1.8.0_66\bin\jvm.pdb	java.exe
File opened for modification	C:\Program Files\Java\jre1.8.0_66\bin\dll\jvm.pdb	java.exe
File opened for modification	C:\Program Files\Java\jre1.8.0_66\bin\symbols\dll\jvm.pdb	java.exe
File opened for modification	C:\Program Files\Java\jre1.8.0_66\bin\symbols\dll\ntdll.pdb	java.exe
File opened for modification	C:\Program Files\Java\jre1.8.0_66\bin\server\jvm.pdb	java.exe
File opened for modification	C:\Program Files\Java\jre1.8.0_66\bin\server\dll\jvm.pdb	java.exe
File opened for modification	C:\Program Files\Java\jre1.8.0_66\bin\server\ntdll.pdb	java.exe
File opened for modification	C:\Program Files\Java\jre1.8.0_66\bin\server\dll\ntdll.pdb	java.exe
File opened for modification	C:\Program Files\Java\jre1.8.0_66\bin\server\symbols\dll\ntdll.pdb	java.exe
File opened for modification	C:\Program Files\Java\jre1.8.0_66\bin\ntdll.pdb	java.exe
File opened for modification	C:\Program Files\Java\jre1.8.0_66\bin\dll\ntdll.pdb	java.exe

C:\ProgramData\Oracle\Java\javapath\java.exe
java -jar "C:\Users\Admin\AppData\Local\Temp\shipment documents.jar"
1⤵
- Drops file in Program Files directory
PID:660

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/660-114-0x0000000002770000-0x00000000029E0000-memory.dmp

Filesize
2.4MB

Download
memory/660-115-0x0000000000700000-0x0000000000701000-memory.dmp

Filesize
4KB

Download
memory/660-117-0x00000000029E0000-0x00000000029F0000-memory.dmp

Filesize
64KB

Download
memory/660-118-0x0000000000700000-0x0000000000701000-memory.dmp

Filesize
4KB

Download
memory/660-120-0x0000000002A00000-0x0000000002A10000-memory.dmp

Filesize
64KB

Download
memory/660-121-0x0000000002A10000-0x0000000002A20000-memory.dmp

Filesize
64KB

Download
memory/660-122-0x0000000002A20000-0x0000000002A30000-memory.dmp

Filesize
64KB

Download
memory/660-124-0x0000000002A40000-0x0000000002A50000-memory.dmp

Filesize
64KB

Download
memory/660-125-0x0000000002A50000-0x0000000002A60000-memory.dmp

Filesize
64KB

Download
memory/660-126-0x0000000000700000-0x0000000000701000-memory.dmp

Filesize
4KB

Download
memory/660-123-0x0000000002A30000-0x0000000002A40000-memory.dmp

Filesize
64KB

Download
memory/660-119-0x00000000029F0000-0x0000000002A00000-memory.dmp

Filesize
64KB

Download
memory/660-127-0x0000000002A90000-0x0000000002AA0000-memory.dmp

Filesize
64KB

Download
memory/660-128-0x0000000002A60000-0x0000000002A70000-memory.dmp

Filesize
64KB

Download
memory/660-129-0x0000000002A70000-0x0000000002A80000-memory.dmp

Filesize
64KB

Download
memory/660-130-0x0000000002A80000-0x0000000002A90000-memory.dmp

Filesize
64KB

Download
memory/660-134-0x0000000002AB0000-0x0000000002AC0000-memory.dmp

Filesize
64KB

Download
memory/660-133-0x0000000002AA0000-0x0000000002AB0000-memory.dmp

Filesize
64KB

Download
memory/660-135-0x0000000002AC0000-0x0000000002AD0000-memory.dmp

Filesize
64KB

Download
memory/660-136-0x0000000002AD0000-0x0000000002AE0000-memory.dmp

Filesize
64KB

Download
memory/660-138-0x0000000002AE0000-0x0000000002AF0000-memory.dmp

Filesize
64KB

Download
memory/660-140-0x0000000002AF0000-0x0000000002B00000-memory.dmp

Filesize
64KB

Download
memory/660-142-0x0000000000700000-0x0000000000701000-memory.dmp

Filesize
4KB

Download
memory/660-144-0x0000000000700000-0x0000000000701000-memory.dmp

Filesize
4KB

Download
memory/660-143-0x0000000000700000-0x0000000000701000-memory.dmp

Filesize
4KB

Download
memory/660-147-0x0000000000700000-0x0000000000701000-memory.dmp

Filesize
4KB

Download
memory/660-150-0x0000000002B00000-0x0000000002B10000-memory.dmp

Filesize
64KB

Download
memory/660-153-0x0000000000700000-0x0000000000701000-memory.dmp

Filesize
4KB

Download
memory/660-157-0x0000000000700000-0x0000000000701000-memory.dmp

Filesize
4KB

Download
memory/660-159-0x0000000000700000-0x0000000000701000-memory.dmp

Filesize
4KB

Download
memory/660-160-0x0000000002B10000-0x0000000002B20000-memory.dmp

Filesize
64KB

Download
memory/660-161-0x0000000000700000-0x0000000000701000-memory.dmp

Filesize
4KB

Download
memory/660-162-0x0000000002B20000-0x0000000002B30000-memory.dmp

Filesize
64KB

Download
memory/660-163-0x0000000002B30000-0x0000000002B40000-memory.dmp

Filesize
64KB

Download
memory/660-165-0x0000000002B70000-0x0000000002B80000-memory.dmp

Filesize
64KB

Download
memory/660-166-0x0000000002B40000-0x0000000002B50000-memory.dmp

Filesize
64KB

Download
memory/660-167-0x0000000000700000-0x0000000000701000-memory.dmp

Filesize
4KB

Download
memory/660-168-0x0000000002B50000-0x0000000002B60000-memory.dmp

Filesize
64KB

Download
memory/660-169-0x0000000002B60000-0x0000000002B70000-memory.dmp

Filesize
64KB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads