1edf3cf01507803fec265ca8bae31841e556dd3ac0005f36ded69ffd8c3b0569

Analysis

max time kernel
91s
max time network
129s
platform
windows10-2004_x64
resource
win10v2004-20230703-en
resource tags

arch:x64arch:x86image:win10v2004-20230703-enlocale:en-usos:windows10-2004-x64system
submitted
08/08/2023, 06:53

Target

Standard Purchase Order 20423623.jar
Size

445KB
MD5

20ba74eac574b010ceb747bd2f24a28b
SHA1

b63c59d0fb6d2c026468fa590b1d86edb03d9b30
SHA256

1edf3cf01507803fec265ca8bae31841e556dd3ac0005f36ded69ffd8c3b0569
SHA512

b49a9f9e2d1daaf965bcf57f6b116efb4e6db3f14da7b70e83715799ae41a9affddf6496357e28232d0b3de5a61f4b24f2d994411d5e45cf8b079778675690d7
SSDEEP

12288:WFmmDQPWrdhoV994aYHErcmzZZPSv9+o3GAoc:CcAdhK994QrlzZJSsOGAoc

Score

4^/10

Drops file in Program Files directory 12 IoCs

description	ioc	Process
File opened for modification	C:\Program Files\Java\jre1.8.0_66\bin\server\dll\jvm.pdb	java.exe
File opened for modification	C:\Program Files\Java\jre1.8.0_66\bin\server\symbols\dll\jvm.pdb	java.exe
File opened for modification	C:\Program Files\Java\jre1.8.0_66\bin\dll\jvm.pdb	java.exe
File opened for modification	C:\Program Files\Java\jre1.8.0_66\bin\server\symbols\dll\ntdll.pdb	java.exe
File opened for modification	C:\Program Files\Java\jre1.8.0_66\bin\ntdll.pdb	java.exe
File opened for modification	C:\Program Files\Java\jre1.8.0_66\bin\server\jvm.pdb	java.exe
File opened for modification	C:\Program Files\Java\jre1.8.0_66\bin\jvm.pdb	java.exe
File opened for modification	C:\Program Files\Java\jre1.8.0_66\bin\symbols\dll\jvm.pdb	java.exe
File opened for modification	C:\Program Files\Java\jre1.8.0_66\bin\server\ntdll.pdb	java.exe
File opened for modification	C:\Program Files\Java\jre1.8.0_66\bin\server\dll\ntdll.pdb	java.exe
File opened for modification	C:\Program Files\Java\jre1.8.0_66\bin\dll\ntdll.pdb	java.exe
File opened for modification	C:\Program Files\Java\jre1.8.0_66\bin\symbols\dll\ntdll.pdb	java.exe

C:\ProgramData\Oracle\Java\javapath\java.exe
java -jar "C:\Users\Admin\AppData\Local\Temp\Standard Purchase Order 20423623.jar"
1⤵
- Drops file in Program Files directory
PID:740

memory/740-137-0x00000000030A0000-0x00000000040A0000-memory.dmp

Filesize
16.0MB

Download
memory/740-144-0x0000000002CD0000-0x0000000002CD1000-memory.dmp

Filesize
4KB

Download
memory/740-150-0x00000000030A0000-0x00000000040A0000-memory.dmp

Filesize
16.0MB

Download
memory/740-159-0x0000000002CD0000-0x0000000002CD1000-memory.dmp

Filesize
4KB

Download
memory/740-163-0x00000000030A0000-0x00000000040A0000-memory.dmp

Filesize
16.0MB

Download
memory/740-165-0x0000000003320000-0x0000000003330000-memory.dmp

Filesize
64KB

Download
memory/740-166-0x0000000003330000-0x0000000003340000-memory.dmp

Filesize
64KB

Download
memory/740-167-0x0000000003370000-0x0000000003380000-memory.dmp

Filesize
64KB

Download
memory/740-168-0x0000000003360000-0x0000000003370000-memory.dmp

Filesize
64KB

Download
memory/740-169-0x0000000003380000-0x0000000003390000-memory.dmp

Filesize
64KB

Download
memory/740-170-0x00000000030A0000-0x00000000040A0000-memory.dmp

Filesize
16.0MB

Download
memory/740-171-0x00000000030A0000-0x00000000040A0000-memory.dmp

Filesize
16.0MB

Download