Analysis
-
max time kernel
125s -
max time network
150s -
platform
windows10_x64 -
resource
win10-en-20211208 -
submitted
13/12/2021, 15:18
Static task
static1
Behavioral task
behavioral1
Sample
SHIPMENT_DOCUMENTS_INV-PLIST_BL PDF.jar
Resource
win7-en-20211208
0 signatures
0 seconds
Behavioral task
behavioral2
Sample
SHIPMENT_DOCUMENTS_INV-PLIST_BL PDF.jar
Resource
win10-en-20211208
0 signatures
0 seconds
General
-
Target
SHIPMENT_DOCUMENTS_INV-PLIST_BL PDF.jar
-
Size
95KB
-
MD5
b1467334c88785074a65f4a908a98852
-
SHA1
f03287324b6a6d87458802faf8626a8b37f7ea76
-
SHA256
1ad5d9e88b0356a59d02aa52ddbb663719b46085e3075e7f171c609083a09db0
-
SHA512
9edcb83f6dd786cc5680d82feead098b77da16096d63fe59c21ca3f280e67037c15ef380624f29f6ce46497a1c8d1a3931e28c2d430d2ae7f92856ed3a53229e
Score
4/10
Malware Config
Signatures
-
Drops file in Program Files directory 12 IoCs
description ioc Process File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\server\jvm.pdb java.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\dll\jvm.pdb java.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\server\dll\ntdll.pdb java.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\server\symbols\dll\ntdll.pdb java.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\dll\ntdll.pdb java.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\symbols\dll\ntdll.pdb java.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\server\dll\jvm.pdb java.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\server\symbols\dll\jvm.pdb java.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\jvm.pdb java.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\symbols\dll\jvm.pdb java.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\server\ntdll.pdb java.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\ntdll.pdb java.exe