General
-
Target
ORYX RefNo 210880_opt.jar
-
Size
124KB
-
Sample
210517-x228dcbzhx
-
MD5
13c4f3b9f92fa63f48b292fd6fbdd33c
-
SHA1
05a59493ce264b62452623388d5545382fb13a1a
-
SHA256
5aeeae4166befce91729c0d886d2bd9c681f94b2edbd7ac4753b0b79572071fa
-
SHA512
ab26bfbf3a5819ffabc975cdd1f2339b69b4039580b47664aef4c14ffef46b17fee8ccd828d6ca466bcb6b561f9969c66ce489372a1c75d5b90fcf827eecccea
Static task
static1
Behavioral task
behavioral1
Sample
ORYX RefNo 210880_opt.jar
Resource
win7v20210408
Behavioral task
behavioral2
Sample
ORYX RefNo 210880_opt.jar
Resource
win10v20210410
Malware Config
Targets
-
-
Target
ORYX RefNo 210880_opt.jar
-
Size
124KB
-
MD5
13c4f3b9f92fa63f48b292fd6fbdd33c
-
SHA1
05a59493ce264b62452623388d5545382fb13a1a
-
SHA256
5aeeae4166befce91729c0d886d2bd9c681f94b2edbd7ac4753b0b79572071fa
-
SHA512
ab26bfbf3a5819ffabc975cdd1f2339b69b4039580b47664aef4c14ffef46b17fee8ccd828d6ca466bcb6b561f9969c66ce489372a1c75d5b90fcf827eecccea
Score10/10-
Drops startup file
-
Loads dropped DLL
-
Adds Run key to start application
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-