Analysis
-
max time kernel
121s -
max time network
124s -
platform
windows10_x64 -
resource
win10-en-20211208 -
submitted
18/12/2021, 08:50
Static task
static1
Behavioral task
behavioral1
Sample
SHIPMENT_DOCUMENTS_BL_INV_PKLISTS XLS.jar
Resource
win7-en-20211208
0 signatures
0 seconds
Behavioral task
behavioral2
Sample
SHIPMENT_DOCUMENTS_BL_INV_PKLISTS XLS.jar
Resource
win10-en-20211208
0 signatures
0 seconds
General
-
Target
SHIPMENT_DOCUMENTS_BL_INV_PKLISTS XLS.jar
-
Size
103KB
-
MD5
25d7be8c2f534dca289f50a193a5418d
-
SHA1
020aa3a275641eb88e07df1ed222f14944f80785
-
SHA256
ad13f2f5590aa12b204c3713520f605595ab04f468577424effd742251a35712
-
SHA512
9ccd9bf4756aa464fd9eb516448ad9f650c38ebed61f0a0eb3979b66c4f8e57f84bbc0b62c437fd56a7fc5e7c798f42a6da10f4edabf2b52e51bed970f35845e
Score
4/10
Malware Config
Signatures
-
Drops file in Program Files directory 12 IoCs
description ioc Process File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\server\jvm.pdb java.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\dll\jvm.pdb java.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\server\ntdll.pdb java.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\server\dll\ntdll.pdb java.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\server\symbols\dll\ntdll.pdb java.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\server\dll\jvm.pdb java.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\server\symbols\dll\jvm.pdb java.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\jvm.pdb java.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\symbols\dll\jvm.pdb java.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\ntdll.pdb java.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\dll\ntdll.pdb java.exe File opened for modification C:\Program Files\Java\jre1.8.0_66\bin\symbols\dll\ntdll.pdb java.exe