Overview

overview

4

Static

static

1

Solicitud ...B).jar

windows7-x64

1

Solicitud ...B).jar

windows10-2004-x64

4

Analysis

  • max time kernel
    54s
  • max time network
    32s
  • platform
    windows7_x64
  • resource
    win7-20221111-en
  • resource tags

    arch:x64arch:x86image:win7-20221111-enlocale:en-usos:windows7-x64system
  • submitted
    16/02/2023, 10:25

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Solicitud de Cotización #00071533.pdf(83KB).jar

  • Size

    209KB

  • MD5

    4c51fc8a1f807ad8eb179f1f49123252

  • SHA1

    31bdd7ff17dd10ecfda85cbfbeb97b13aacbcd6c

  • SHA256

    bc5e5f0288b0af3b2d2e74f48d36d1daa9cd341948d01cc1f8b6a53f1e6e73af

  • SHA512

    bd78e4492f86a3c52f36d3e0b9711c60c5c51984a3f7584caf99b8080297bc85ca0cc0868657cb8263f4395158adb38e549771125f5a9f49b923a88eeb4b2520

  • SSDEEP

    6144:51MubM9ocdwGvgfJpEy9ha4bZu2xmUQMgsXYg:51M8MjwaybfbZu27uU

Score
1/10

Malware Config

Signatures

  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Windows\system32\java.exe
    java -jar "C:\Users\Admin\AppData\Local\Temp\Solicitud de Cotización #00071533.pdf(83KB).jar"
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:1784
    • C:\Program Files\Java\jre7\bin\java.exe
      "C:\Program Files\Java\jre7\bin\java.exe" -jar "C:\Users\Admin\Solicitud de Cotización #00071533.pdf(83KB).jar"
      2⤵
        PID:788

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • C:\Users\Admin\Solicitud de Cotización #00071533.pdf(83KB).jar
      Filesize

      209KB

      MD5

      4c51fc8a1f807ad8eb179f1f49123252

      SHA1

      31bdd7ff17dd10ecfda85cbfbeb97b13aacbcd6c

      SHA256

      bc5e5f0288b0af3b2d2e74f48d36d1daa9cd341948d01cc1f8b6a53f1e6e73af

      SHA512

      bd78e4492f86a3c52f36d3e0b9711c60c5c51984a3f7584caf99b8080297bc85ca0cc0868657cb8263f4395158adb38e549771125f5a9f49b923a88eeb4b2520

      Download Submit

    • memory/788-78-0x0000000002220000-0x0000000005220000-memory.dmp

      Filesize

      48.0MB

      Download

    • memory/788-79-0x0000000002220000-0x0000000005220000-memory.dmp

      Filesize

      48.0MB

      Download

    • memory/1784-54-0x000007FEFB641000-0x000007FEFB643000-memory.dmp

      Filesize

      8KB

      Download

    • memory/1784-64-0x0000000002030000-0x0000000005030000-memory.dmp

      Filesize

      48.0MB

      Download