General
-
Target
customers copy.jar
-
Size
88KB
-
Sample
210609-75r5lggk9x
-
MD5
eea14a16697f39254b109e80476df4ce
-
SHA1
b165b2f689c77bdd872aff204a2549a144ea2671
-
SHA256
91450c079b924cdbe85c774ac414ee8824cb4182764c51c11c7f0a6fcf11b800
-
SHA512
09a9c2891b022f07d6e31bcf393816a36bd6ab26559eb58fee1e3fa61adb9941162592f422fc9302fb9b2d8feac2bdd676bf011c00583403b2333ef010ee283f
Static task
static1
Behavioral task
behavioral1
Sample
customers copy.jar
Resource
win7v20210410
Behavioral task
behavioral2
Sample
customers copy.jar
Resource
win10v20210408
Malware Config
Targets
-
-
Target
customers copy.jar
-
Size
88KB
-
MD5
eea14a16697f39254b109e80476df4ce
-
SHA1
b165b2f689c77bdd872aff204a2549a144ea2671
-
SHA256
91450c079b924cdbe85c774ac414ee8824cb4182764c51c11c7f0a6fcf11b800
-
SHA512
09a9c2891b022f07d6e31bcf393816a36bd6ab26559eb58fee1e3fa61adb9941162592f422fc9302fb9b2d8feac2bdd676bf011c00583403b2333ef010ee283f
Score10/10-
Drops startup file
-
Loads dropped DLL
-
Adds Run key to start application
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-
Drops file in System32 directory
-