Resubmissions

19/11/2021, 03:40

211119-d8l9aaghgj 10

05/10/2021, 09:19

211005-lapkrahhar 3

General

  • Target

    Cheque_copy_jpg.jar

  • Size

    103KB

  • Sample

    211119-d8l9aaghgj

  • MD5

    c4a38d07773d619f73abad13ed74286f

  • SHA1

    5199ab6257db0d690b7a08566bf8f032c74a22a8

  • SHA256

    2799f78dd51fce411e566d428cd2f26bb752370f1be1fb2f4ffbc23ae1fd6504

  • SHA512

    b6377eb8c2cacca9912374b4eda3edf3c368d3154c946d4536bc2e94679a4587e601cb3c08a8711106fc9b9c51572a6fba9c68615353fa2869e18de38065f4d5

Malware Config

Targets

    • Target

      Cheque_copy_jpg.jar

    • Size

      103KB

    • MD5

      c4a38d07773d619f73abad13ed74286f

    • SHA1

      5199ab6257db0d690b7a08566bf8f032c74a22a8

    • SHA256

      2799f78dd51fce411e566d428cd2f26bb752370f1be1fb2f4ffbc23ae1fd6504

    • SHA512

      b6377eb8c2cacca9912374b4eda3edf3c368d3154c946d4536bc2e94679a4587e601cb3c08a8711106fc9b9c51572a6fba9c68615353fa2869e18de38065f4d5

    • STRRAT

      STRRAT is a remote access tool than can steal credentials and log keystrokes.

    • Drops startup file

    • Loads dropped DLL

    • Adds Run key to start application

MITRE ATT&CK Enterprise v6

Tasks