General
-
Target
Payment slip.jar
-
Size
184KB
-
Sample
211025-gyrmssgfap
-
MD5
8829ede47aa2e3f8aece3e8ffcc2ba1a
-
SHA1
a0fa240b8db1c3ddb42066ac0ddbb8513d005665
-
SHA256
91799667148b7be1b1d9aa749e5e63da8b529250478c90fee291336551c1544f
-
SHA512
657290510a7472638de1adfa19d9fe5c00bd26ac8903398d44c0f32248094a5c365c17c0c28078be0c1a986cefe06256f0b47c1f69b50ba6a39fca31a2ad8a50
Static task
static1
Behavioral task
behavioral1
Sample
Payment slip.jar
Resource
win7-en-20211014
Behavioral task
behavioral2
Sample
Payment slip.jar
Resource
win10-en-20210920
Malware Config
Targets
-
-
Target
Payment slip.jar
-
Size
184KB
-
MD5
8829ede47aa2e3f8aece3e8ffcc2ba1a
-
SHA1
a0fa240b8db1c3ddb42066ac0ddbb8513d005665
-
SHA256
91799667148b7be1b1d9aa749e5e63da8b529250478c90fee291336551c1544f
-
SHA512
657290510a7472638de1adfa19d9fe5c00bd26ac8903398d44c0f32248094a5c365c17c0c28078be0c1a986cefe06256f0b47c1f69b50ba6a39fca31a2ad8a50
Score10/10-
Drops startup file
-
Loads dropped DLL
-
Adds Run key to start application
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-