Overview

overview

7

Static

static

3

jellyfin_1...64.exe

windows7-x64

7

jellyfin_1...64.exe

windows10-2004-x64

7

Resubmissions

17-12-2023 17:39

231217-v8nksafbcj 7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    jellyfin_10.8.13_windows-x64.exe

  • Size

    122.8MB

  • Sample

    231217-v8nksafbcj

  • MD5

    83329554b6f0f7be7554f77c2c5768f3

  • SHA1

    e537640eec9a430ec3cf07a5219e2f37c511a805

  • SHA256

    7135c985da8136c9a9d794b4d81a752e4e4e0c2495e1e372d664eb853b310a83

  • SHA512

    7945c7fe6c17482da4d82128cc27608651e330782e2dd57e9a71cf4106dd8e00b77d3b2c7dd1cc6f06bf9af77798dd46187b303fa79d62c5bed1071fa30a95d5

  • SSDEEP

    3145728:Qzo95K/eptH53y3cFnFFHzvEGHfx0OxYZ7SZFKxZNJ/kwgXCYw9X:2o9Uef53qyFFTvz/x0O6swNJAXeX

Score
7/10
discoverypersistence

Malware Config

Targets

    • Target

      jellyfin_10.8.13_windows-x64.exe

    • Size

      122.8MB

    • MD5

      83329554b6f0f7be7554f77c2c5768f3

    • SHA1

      e537640eec9a430ec3cf07a5219e2f37c511a805

    • SHA256

      7135c985da8136c9a9d794b4d81a752e4e4e0c2495e1e372d664eb853b310a83

    • SHA512

      7945c7fe6c17482da4d82128cc27608651e330782e2dd57e9a71cf4106dd8e00b77d3b2c7dd1cc6f06bf9af77798dd46187b303fa79d62c5bed1071fa30a95d5

    • SSDEEP

      3145728:Qzo95K/eptH53y3cFnFFHzvEGHfx0OxYZ7SZFKxZNJ/kwgXCYw9X:2o9Uef53qyFFTvz/x0O6swNJAXeX

    Score
    7/10
    discoverypersistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks