Overview

overview

1

Static

static

1

Jenny-Mod-....5.jar

windows7-x64

1

Jenny-Mod-....5.jar

windows10-2004-x64

1

Analysis

  • max time kernel
    140s
  • max time network
    146s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230703-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230703-enlocale:en-usos:windows10-2004-x64system
  • submitted
    04/08/2023, 11:25

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Jenny-Mod-Forge-1.12.2-v1.7.5.jar

  • Size

    42.1MB

  • MD5

    0a12643f832adb4fcd0ebefc61d9a91c

  • SHA1

    efb352802a70ec9090d174f5ec4ad45ee9c67609

  • SHA256

    fb68801e43b7537294c9d77b0459cfb2413c5128a554875178f769545e693d7b

  • SHA512

    9b4671b96660f7844e2b5296d7513781f20ca3a86b3e453d5081ce2bf7810d31232fb863925a454a326714a5e484273408a700ab6e63caaf64e57ba8e4b05ad1

  • SSDEEP

    786432:V+L97lHfurN3Fg4r22t5Zs82tnjpXPeglyRHdWLDCNT/CxZDRa9xDtM31G:qtgN3Lv3sRpmcg9WLDC9CyOG

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 25 IoCs
  • Suspicious use of AdjustPrivilegeToken 5 IoCs
  • Suspicious use of FindShellTrayWindow 51 IoCs
  • Suspicious use of SendNotifyMessage 51 IoCs

Processes

  • C:\ProgramData\Oracle\Java\javapath\java.exe
    java -jar C:\Users\Admin\AppData\Local\Temp\Jenny-Mod-Forge-1.12.2-v1.7.5.jar
    1⤵
      PID:4692
    • C:\Windows\system32\taskmgr.exe
      "C:\Windows\system32\taskmgr.exe" /7
      1⤵
      • Suspicious behavior: EnumeratesProcesses
      • Suspicious use of AdjustPrivilegeToken
      • Suspicious use of FindShellTrayWindow
      • Suspicious use of SendNotifyMessage
      PID:2856

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/2856-145-0x0000026CC28A0000-0x0000026CC28A1000-memory.dmp

      Filesize

      4KB

      Download

    • memory/2856-146-0x0000026CC28A0000-0x0000026CC28A1000-memory.dmp

      Filesize

      4KB

      Download

    • memory/2856-147-0x0000026CC28A0000-0x0000026CC28A1000-memory.dmp

      Filesize

      4KB

      Download

    • memory/2856-152-0x0000026CC28A0000-0x0000026CC28A1000-memory.dmp

      Filesize

      4KB

      Download

    • memory/2856-151-0x0000026CC28A0000-0x0000026CC28A1000-memory.dmp

      Filesize

      4KB

      Download

    • memory/2856-154-0x0000026CC28A0000-0x0000026CC28A1000-memory.dmp

      Filesize

      4KB

      Download

    • memory/2856-153-0x0000026CC28A0000-0x0000026CC28A1000-memory.dmp

      Filesize

      4KB

      Download

    • memory/2856-155-0x0000026CC28A0000-0x0000026CC28A1000-memory.dmp

      Filesize

      4KB

      Download

    • memory/2856-157-0x0000026CC28A0000-0x0000026CC28A1000-memory.dmp

      Filesize

      4KB

      Download

    • memory/2856-156-0x0000026CC28A0000-0x0000026CC28A1000-memory.dmp

      Filesize

      4KB

      Download

    • memory/4692-135-0x0000000003360000-0x0000000004360000-memory.dmp

      Filesize

      16.0MB

      Download

    • memory/4692-144-0x0000000001630000-0x0000000001631000-memory.dmp

      Filesize

      4KB

      Download