General

  • Target

    Cotizaciones.jar

  • Size

    70KB

  • Sample

    230706-gfp19aae3t

  • MD5

    70a0aefb832e99006ed06844554ff498

  • SHA1

    eefeee9919557f65474c7c01d11f900aba1c0f31

  • SHA256

    760e559a3535b27d012b29e4c44767e7261e7a29f45b78189196d85b25876b5e

  • SHA512

    8adfa7e91e312cfcaef15e7da66fee7a3a19a8054ff813432702fc5cf29c60c634e8127e41c6a5ad0d8530f58ba9fc01cf6d403bf1456b7e9d498f766aa2c3c8

  • SSDEEP

    1536:EUUaKBlG6NcFSsprgb4OZ8kUj0DTIQLChV/dEu:EDM6NcR8b4nCTIHPKu

Malware Config

Targets

    • Target

      Cotizaciones.jar

    • Size

      70KB

    • MD5

      70a0aefb832e99006ed06844554ff498

    • SHA1

      eefeee9919557f65474c7c01d11f900aba1c0f31

    • SHA256

      760e559a3535b27d012b29e4c44767e7261e7a29f45b78189196d85b25876b5e

    • SHA512

      8adfa7e91e312cfcaef15e7da66fee7a3a19a8054ff813432702fc5cf29c60c634e8127e41c6a5ad0d8530f58ba9fc01cf6d403bf1456b7e9d498f766aa2c3c8

    • SSDEEP

      1536:EUUaKBlG6NcFSsprgb4OZ8kUj0DTIQLChV/dEu:EDM6NcR8b4nCTIHPKu

    • STRRAT

      STRRAT is a remote access tool than can steal credentials and log keystrokes.

    • Drops startup file

    • Adds Run key to start application

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v6

Tasks