Overview

overview

5

Static

static

ide-eval-r....6.jar

windows7-x64

1

ide-eval-r....6.jar

windows10-2004-x64

1

JetBrains ...er.jar

windows7-x64

1

JetBrains ...er.jar

windows10-2004-x64

1

JetBrains ...ns.jar

windows7-x64

1

JetBrains ...ns.jar

windows10-2004-x64

1

JetBrains ...me.jar

windows7-x64

1

JetBrains ...me.jar

windows10-2004-x64

1

JetBrains ...er.jar

windows7-x64

1

JetBrains ...er.jar

windows10-2004-x64

1

JetBrains ...rl.jar

windows7-x64

1

JetBrains ...rl.jar

windows10-2004-x64

1

JetBrains ...nux.sh

ubuntu-18.04-amd64

5

JetBrains ...nux.sh

debian-9-armhf

5

JetBrains ...nux.sh

debian-9-mips

5

JetBrains ...nux.sh

debian-9-mipsel

5

JetBrains ...ws.vbs

windows7-x64

1

JetBrains ...ws.vbs

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9fbb13dd5d85279135adaa9ae3f4056333849a1bf3ece0469fd1424ddbb49d5f

  • Size

    105KB

  • Sample

    220805-t3cewscefj

  • MD5

    cd96ceffb30a5e51c29419f34a45c8da

  • SHA1

    a59dafc971aa233d15ee5e9ff646f9f85dcd9435

  • SHA256

    9fbb13dd5d85279135adaa9ae3f4056333849a1bf3ece0469fd1424ddbb49d5f

  • SHA512

    f384c7013502a8b0b5dd606871b204f657429abca01f518bf2516bf7a8757f02d7f6549f6dc4221132cfabbe1a4732ccf4750fff1474b126bc04de8d013796e0

Score
5/10
linux

Malware Config

Targets

    • Target

      ide-eval-resetter/lib/ide-eval-resetter-2.1.6.jar

    • Size

      35KB

    • MD5

      ce8c8fce38d697624be5eb5e468d0fb6

    • SHA1

      7a6f5cb4a47cf4b1abeb0a1b0c2e1723f526e4ce

    • SHA256

      931788327f56a61128cdb50c7af5479f043a9bd26d69f89bc4d1f2c33802f7c8

    • SHA512

      251e51aec45d4a2f1f0c0713b114348157864b47d8cc01d7943753d7f7f7f8715333f76a2585a2f6d36a8611a8b2799ffeea4de19b83129f5638fbf58329dbe6

    Score
    1/10
    behavioral1behavioral2

    • Target

      JetBrains 2022 ???????/??2???????????????/ja-netfilter/ja-netfilter.jar

    • Size

      47KB

    • MD5

      9308d96394fd2ccc33c75127f1cc33ba

    • SHA1

      a333ce1ef2ebc79449d567cfe31404115cdfda75

    • SHA256

      7f91af6beac337409247b7a93e1a10ec6003964b3214acdcc38afbe142f236d2

    • SHA512

      b9475b1a59cd97180d8f08eb3879946a39c68533e5abce13b8aa32135c3e1d9f8105b4b5d91a93ad6c9703b4deb75a1c3d2764f3a3c049d121a3b715ef2145a7

    Score
    1/10
    behavioral3behavioral4

    • Target

      JetBrains 2022 ???????/??2???????????????/ja-netfilter/plugins/dns.jar

    • Size

      4KB

    • MD5

      4f3c516c1704a5569725246d57dd1ae7

    • SHA1

      4e8693b5a7a3837cf7f6db0c4f1316f376d34721

    • SHA256

      d1150b1831b112b93d74a34a10ce6c11606e0d2255d532c29f91f1d92b40a552

    • SHA512

      f885fc751e9035944489578bb037f05521c6258c377c0c7bf8b8d10b799063e6e529c715ecebf9729724f0497f588803d7d463fbb70f5efbd73952624f60d08e

    Score
    1/10
    behavioral5behavioral6

    • Target

      JetBrains 2022 ???????/??2???????????????/ja-netfilter/plugins/hideme.jar

    • Size

      7KB

    • MD5

      cdab6a30b0949a741f13935f5483c303

    • SHA1

      729d00e4fa04ca49c00b5b6aa60706dfadd5644e

    • SHA256

      fa14c735ab9fed3f3a5df0dc78a5d38ae0a146099ddc858197e9f528bd996c40

    • SHA512

      bf155c0b062fe9c7c237f9b0329a155387b7294fae7c7ed73e41e9528f119ccc513855329f6e91e62106b589c8b215d981ed11f2f89c7e13c06fbdcf7d6d1ee8

    Score
    1/10
    behavioral7behavioral8

    • Target

      JetBrains 2022 ???????/??2???????????????/ja-netfilter/plugins/power.jar

    • Size

      9KB

    • MD5

      d8711b73bc0507dbdc841b098af99787

    • SHA1

      26ee7577969265ff77a7fd786bcb707fe21a3d6b

    • SHA256

      7819e5b968ce5ea2e638e53d84089d35e89e9ea3088f18f8dbf6dd38d14ab25a

    • SHA512

      dde478c503a5fbd17fd3cdac67d379abdb392d9edadc37feeafc3572f44044674af2f16e33b7c201fcb52e0d4eeb635fd53843b58700986aa380191aca6cc843

    Score
    1/10
    behavioral9behavioral10

    • Target

      JetBrains 2022 ???????/??2???????????????/ja-netfilter/plugins/url.jar

    • Size

      4KB

    • MD5

      6b181e5b8255db4cd9beb1c6af5f420e

    • SHA1

      b1bebbee8d98218db5794f596001b8b7427ae0c7

    • SHA256

      ce5a83aee31153cca30274ac94467b316edea8cb28acf72f52f5a72d455b1b43

    • SHA512

      26dabc145da4a987744ab86d600ab81482771fb8fc99933828104d4698f4dc407eb97281a36f01d5852fc2209d0092f10b7d23d62db8f7e456f8d2d0a108ce7a

    Score
    1/10
    behavioral11behavioral12

    • Target

      JetBrains 2022 ???????/reset_script/reset_jetbrains_eval_mac_linux.sh

    • Size

      558B

    • MD5

      d4a64ce441aaef7f110a3f74296113aa

    • SHA1

      a9b938e9f7a568b0439b4e0f4462d48da3c1f850

    • SHA256

      1a34b0606276623da4fcc89f094068d74475e7c2e5d92b16cdbc714df3a0eb6e

    • SHA512

      4c2038a360cb1cb71837d8dabc72c255f9d4082e840264263479b988524bde1c19550a5f703bf8877b029234b661a92c43268a71acf833fb0800498d3fc17977

    Score
    5/10

    • Writes file to tmp directory

      Malware often drops required files in the /tmp directory.

    behavioral13behavioral14behavioral15behavioral16

    • Target

      JetBrains 2022 ???????/reset_script/reset_jetbrains_eval_windows.vbs

    • Size

      1019B

    • MD5

      101aa8bf913d2ad7481b9c17dda56a31

    • SHA1

      8bd0f7e39e0348d338fdfeec536abd49cb721b36

    • SHA256

      5e3da17d0d819f4441ca6facaab51bddbb56bfb39d99d7b7d7c802c5d6266f22

    • SHA512

      c66162cda3a3f03da4ff6fdf9a4950f17270a4b8b81af0daf69471ca6cd8344e304c63b3a1a875d65aa428ba221d724f51413e02932fb1eeb25e4d5484ebea76

    Score
    1/10
    behavioral17behavioral18

MITRE ATT&CK Matrix

Tasks