General
-
Target
Quotation.jar
-
Size
118KB
-
Sample
210511-swbvh55cyn
-
MD5
3025deb4a8f51cc463b3784961b00b9d
-
SHA1
693fcc0e8c4ce1a62d79ed490e8cbdfbb52d3346
-
SHA256
7b252e149c75956c0f103a1b019aee20004e8c5b8ec5011becc283aca581507a
-
SHA512
fe244cf750e826ef4342d88cffecc3b78fd20c4eabb673802681ec1317b86c24233f475b5caf1b1d901823ee4deb9196c32d5bfac73de4c0a70b80322c37df11
Static task
static1
Behavioral task
behavioral1
Sample
Quotation.jar
Resource
win7v20210408
Behavioral task
behavioral2
Sample
Quotation.jar
Resource
win10v20210410
Malware Config
Targets
-
-
Target
Quotation.jar
-
Size
118KB
-
MD5
3025deb4a8f51cc463b3784961b00b9d
-
SHA1
693fcc0e8c4ce1a62d79ed490e8cbdfbb52d3346
-
SHA256
7b252e149c75956c0f103a1b019aee20004e8c5b8ec5011becc283aca581507a
-
SHA512
fe244cf750e826ef4342d88cffecc3b78fd20c4eabb673802681ec1317b86c24233f475b5caf1b1d901823ee4deb9196c32d5bfac73de4c0a70b80322c37df11
Score10/10-
Drops startup file
-
Loads dropped DLL
-
Adds Run key to start application
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-