Analysis
-
max time kernel
121s -
max time network
153s -
platform
windows10_x64 -
resource
win10-en-20211208 -
submitted
09/12/2021, 12:54
Static task
static1
Behavioral task
behavioral1
Sample
DOCUMENTS_SHIPPING_107865489 (2).jar
Resource
win7-en-20211208
0 signatures
0 seconds
Behavioral task
behavioral2
Sample
DOCUMENTS_SHIPPING_107865489 (2).jar
Resource
win10-en-20211208
0 signatures
0 seconds
General
-
Target
DOCUMENTS_SHIPPING_107865489 (2).jar
-
Size
95KB
-
MD5
d79532f750087749d27a51d2b6193c5f
-
SHA1
5f4c9b790017fdde77432984b125baaf59ca3144
-
SHA256
1571a4bf6d272dced62cf114cbc864994cd7d360097263b277a3ac50ac226d21
-
SHA512
bd5f4c0b9a9455ba7b1848574be228c714323f6e3bf144898e3be602089707b5ea066e67c51c60ba062dd3bb6db2495b68627801ccafd8f7beea1a181411519b
Score
4/10
Malware Config
Signatures
-
Drops file in Program Files directory 12 IoCs
description ioc Process File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\server\dll\jvm.pdb java.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\server\symbols\dll\jvm.pdb java.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\dll\jvm.pdb java.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\server\ntdll.pdb java.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\server\dll\ntdll.pdb java.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\dll\ntdll.pdb java.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\server\jvm.pdb java.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\jvm.pdb java.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\symbols\dll\jvm.pdb java.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\server\symbols\dll\ntdll.pdb java.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\ntdll.pdb java.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\symbols\dll\ntdll.pdb java.exe