cd2b9d9baaab804facdaec1e54b2d1606c1fbfdd5372f1965631a26f957bcc6f

Analysis

Target

PAMENT SLIP.jar
Size

184KB
MD5

94c622790b53ebc89c7f0837d95e9d8e
SHA1

12eeb397fa6559dc25801c814a673db269777c4b
SHA256

cd2b9d9baaab804facdaec1e54b2d1606c1fbfdd5372f1965631a26f957bcc6f
SHA512

2bd8fb1e5e0cf277f95fac27e30e8c1c4682482cdfa38e529f48c650f1f9f9008af8dec2bf4da2d60cf38850dae95885a405da68e55a0912b61964385e515939

Score

4^/10

Drops file in Program Files directory 12 IoCs

Processes:

java.exe

description	ioc	process
File opened for modification	C:\Program Files\Java\jre1.8.0_66\bin\server\dll\jvm.pdb	java.exe
File opened for modification	C:\Program Files\Java\jre1.8.0_66\bin\server\symbols\dll\jvm.pdb	java.exe
File opened for modification	C:\Program Files\Java\jre1.8.0_66\bin\jvm.pdb	java.exe
File opened for modification	C:\Program Files\Java\jre1.8.0_66\bin\server\ntdll.pdb	java.exe
File opened for modification	C:\Program Files\Java\jre1.8.0_66\bin\server\symbols\dll\ntdll.pdb	java.exe
File opened for modification	C:\Program Files\Java\jre1.8.0_66\bin\symbols\dll\ntdll.pdb	java.exe
File opened for modification	C:\Program Files\Java\jre1.8.0_66\bin\server\jvm.pdb	java.exe
File opened for modification	C:\Program Files\Java\jre1.8.0_66\bin\symbols\dll\jvm.pdb	java.exe
File opened for modification	C:\Program Files\Java\jre1.8.0_66\bin\server\dll\ntdll.pdb	java.exe
File opened for modification	C:\Program Files\Java\jre1.8.0_66\bin\ntdll.pdb	java.exe
File opened for modification	C:\Program Files\Java\jre1.8.0_66\bin\dll\ntdll.pdb	java.exe
File opened for modification	C:\Program Files\Java\jre1.8.0_66\bin\dll\jvm.pdb	java.exe

C:\ProgramData\Oracle\Java\javapath\java.exe
java -jar "C:\Users\Admin\AppData\Local\Temp\PAMENT SLIP.jar"
1⤵
- Drops file in Program Files directory
PID:4088

memory/4088-115-0x0000000002FC0000-0x0000000003230000-memory.dmp

Filesize
2.4MB

Download
memory/4088-116-0x0000000002FC0000-0x0000000003230000-memory.dmp

Filesize
2.4MB

Download
memory/4088-117-0x0000000000E10000-0x0000000000E11000-memory.dmp

Filesize
4KB

Download
memory/4088-122-0x0000000003240000-0x0000000003250000-memory.dmp

Filesize
64KB

Download
memory/4088-121-0x0000000003230000-0x0000000003240000-memory.dmp

Filesize
64KB

Download
memory/4088-123-0x0000000003250000-0x0000000003260000-memory.dmp

Filesize
64KB

Download
memory/4088-125-0x0000000000E10000-0x0000000000E11000-memory.dmp

Filesize
4KB

Download
memory/4088-126-0x0000000003260000-0x0000000003270000-memory.dmp

Filesize
64KB

Download
memory/4088-127-0x0000000000E10000-0x0000000000E11000-memory.dmp

Filesize
4KB

Download
memory/4088-128-0x0000000003270000-0x0000000003280000-memory.dmp

Filesize
64KB

Download