Analysis

  • max time kernel
    110s
  • max time network
    139s
  • platform
    windows10_x64
  • resource
    win10-en-20211208
  • submitted
    13/12/2021, 15:18

General

  • Target

    CUSTOMS DOCUMENTS PDF.jar

  • Size

    95KB

  • MD5

    91f2de012a840b47d9d11d1507ca14be

  • SHA1

    79b813a33705605527483ead1aea2537c198e571

  • SHA256

    abacf97d6fd2b2c59717692c05fb25a5a9295aea2908b76324531e5e9fdc4311

  • SHA512

    46560661273593e550ce587b0c1d0effeb5cc21e04c920a6e9aff16ebcb4e93bc9785376015cb6496c0e452d478e25b62ad5f8912f62adc0d0f4f318e6b30506

Score
4/10

Malware Config

Signatures

  • Drops file in Program Files directory 12 IoCs

Processes

  • C:\ProgramData\Oracle\Java\javapath\java.exe
    java -jar "C:\Users\Admin\AppData\Local\Temp\CUSTOMS DOCUMENTS PDF.jar"
    1⤵
    • Drops file in Program Files directory
    PID:2612

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • memory/2612-115-0x0000000002750000-0x00000000029C0000-memory.dmp

          Filesize

          2.4MB

        • memory/2612-116-0x0000000002750000-0x00000000029C0000-memory.dmp

          Filesize

          2.4MB

        • memory/2612-117-0x0000000000A30000-0x0000000000A31000-memory.dmp

          Filesize

          4KB

        • memory/2612-118-0x0000000000A30000-0x0000000000A31000-memory.dmp

          Filesize

          4KB

        • memory/2612-122-0x00000000029C0000-0x00000000029D0000-memory.dmp

          Filesize

          64KB

        • memory/2612-123-0x00000000029D0000-0x00000000029E0000-memory.dmp

          Filesize

          64KB

        • memory/2612-124-0x00000000029E0000-0x00000000029F0000-memory.dmp

          Filesize

          64KB

        • memory/2612-125-0x0000000000A30000-0x0000000000A31000-memory.dmp

          Filesize

          4KB

        • memory/2612-127-0x00000000029F0000-0x0000000002A00000-memory.dmp

          Filesize

          64KB