Analysis
-
max time kernel
108s -
max time network
127s -
platform
windows10_x64 -
resource
win10-en-20211208 -
submitted
14/12/2021, 09:03
Static task
static1
Behavioral task
behavioral1
Sample
Remittance.jar
Resource
win7-en-20211208
0 signatures
0 seconds
Behavioral task
behavioral2
Sample
Remittance.jar
Resource
win10-en-20211208
0 signatures
0 seconds
General
-
Target
Remittance.jar
-
Size
95KB
-
MD5
1884f1dd8bc296512bc4cc4fa0d1731f
-
SHA1
7d00c02445094f044a64029a1105bedfe71c7d8d
-
SHA256
7166e6707991af3e05e2a9f04aedf913c83ff5e21301ab595e0b04d0f960eb9f
-
SHA512
cd120e1507c2c9127455c9dd2f53f912508077367757daa685d97e7f5fb890a04a291e5e4697bffc8cfe151f8990adc2594f2883aef63a4180f2d66f1305d079
Score
4/10
Malware Config
Signatures
-
Drops file in Program Files directory 12 IoCs
description ioc Process File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\server\ntdll.pdb java.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\server\dll\ntdll.pdb java.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\ntdll.pdb java.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\server\jvm.pdb java.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\server\dll\jvm.pdb java.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\server\symbols\dll\jvm.pdb java.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\symbols\dll\jvm.pdb java.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\symbols\dll\ntdll.pdb java.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\jvm.pdb java.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\dll\jvm.pdb java.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\server\symbols\dll\ntdll.pdb java.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\dll\ntdll.pdb java.exe