General

  • Target

    mata.jar

  • Size

    639KB

  • Sample

    231129-nx8y1sfh49

  • MD5

    1a0a46f8d0d4a4e32e93cd9c074c1792

  • SHA1

    a76ab9101df27164f0fc35d6ce1b68bbc59b276e

  • SHA256

    8fa84857b847fb0adf3f902a801a0736e1f31720798bb7367196e955ae0d7985

  • SHA512

    0768600d3d121375df770c84d23a21c0c6cbb2f2b60bf0c68e0246059d1ea9763f00cce35c99adfb4b21f468f08649995ed0dcdc2a8011525af21aeeb354c7dd

  • SSDEEP

    12288:aLz9Q9/3nBAfR4RFgRQbg6/PR7+xvsNGXGgi9iR5w30uY2dQSGNDUd:aLhQ9xAp4TTbg6Rm2GXvkZ0uVdrGNDUd

Malware Config

Targets

    • Target

      mata.jar

    • Size

      639KB

    • MD5

      1a0a46f8d0d4a4e32e93cd9c074c1792

    • SHA1

      a76ab9101df27164f0fc35d6ce1b68bbc59b276e

    • SHA256

      8fa84857b847fb0adf3f902a801a0736e1f31720798bb7367196e955ae0d7985

    • SHA512

      0768600d3d121375df770c84d23a21c0c6cbb2f2b60bf0c68e0246059d1ea9763f00cce35c99adfb4b21f468f08649995ed0dcdc2a8011525af21aeeb354c7dd

    • SSDEEP

      12288:aLz9Q9/3nBAfR4RFgRQbg6/PR7+xvsNGXGgi9iR5w30uY2dQSGNDUd:aLhQ9xAp4TTbg6Rm2GXvkZ0uVdrGNDUd

    • Modifies file permissions

    • Adds Run key to start application

    • Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v15

Tasks