General
-
Target
Order.jar
-
Size
119KB
-
Sample
210705-pkntlxkc22
-
MD5
e4ff39c093a238eff303dc92537ea2fb
-
SHA1
6f538d4150f4c48f0bb25c2cc9396f6d8f4ae1e7
-
SHA256
3c58c0257967024f97cc51918584119061f5760839ead8834613617413cd76bc
-
SHA512
1a3e9adb721edd0a1cdba4cf754f8c5d787cec7aac2e3edf3d6dd7d3195e4dd04e87c1d533b7c49f21aff03fd20abb6b13e6f529aed60939e7202c1a7d6b278d
Static task
static1
Behavioral task
behavioral1
Sample
Order.jar
Resource
win7v20210408
Behavioral task
behavioral2
Sample
Order.jar
Resource
win10v20210410
Malware Config
Targets
-
-
Target
Order.jar
-
Size
119KB
-
MD5
e4ff39c093a238eff303dc92537ea2fb
-
SHA1
6f538d4150f4c48f0bb25c2cc9396f6d8f4ae1e7
-
SHA256
3c58c0257967024f97cc51918584119061f5760839ead8834613617413cd76bc
-
SHA512
1a3e9adb721edd0a1cdba4cf754f8c5d787cec7aac2e3edf3d6dd7d3195e4dd04e87c1d533b7c49f21aff03fd20abb6b13e6f529aed60939e7202c1a7d6b278d
Score10/10-
Drops startup file
-
Loads dropped DLL
-
Adds Run key to start application
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-