c496a406536d17e5f8ab08b94b8fa187af12cba398ee9a92cd9ef000d356f904

Sharing

Copy URL

Twitter E-mail

General

Target

android-studio-ide-193.6514223-windows.exe
Size

871.7MB
Sample

240307-zafjqsdc27
MD5

2001691096d16091c21469509c2a2b85
SHA1

2985ab5be5736b8c4ba4e9d6aa821d78e287df8e
SHA256

c496a406536d17e5f8ab08b94b8fa187af12cba398ee9a92cd9ef000d356f904
SHA512

0e0ec7fd3dd6d3d12ecb305339a02e9b3707aa757c717308d30988beeae300e0e898eddfb0fe318ba5c14bbaff8fcc20a51799e0f6a1c4a7b172c1ea66758882
SSDEEP

25165824:7KzhqkpIU3Z1tWQVYNKXtsqlCFKnFGhzfBQ2QtNT5:7usk1XWQV7nlClhztQLT5

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  android-studio-ide-193.6514223-windows.exe
- Size
  
  871.7MB
- MD5
  
  2001691096d16091c21469509c2a2b85
- SHA1
  
  2985ab5be5736b8c4ba4e9d6aa821d78e287df8e
- SHA256
  
  c496a406536d17e5f8ab08b94b8fa187af12cba398ee9a92cd9ef000d356f904
- SHA512
  
  0e0ec7fd3dd6d3d12ecb305339a02e9b3707aa757c717308d30988beeae300e0e898eddfb0fe318ba5c14bbaff8fcc20a51799e0f6a1c4a7b172c1ea66758882
- SSDEEP
  
  25165824:7KzhqkpIU3Z1tWQVYNKXtsqlCFKnFGhzfBQ2QtNT5:7usk1XWQV7nlClhztQLT5
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1
- Target
  
  $_32_/jre/jre/bin/JAWTAccessBridge-64.dll
- Size
  
  16KB
- MD5
  
  f7b6189b2050520866edcb280779128e
- SHA1
  
  ee23e33f0ea8d3aaee6855cb7cc6bf9e3ffbed92
- SHA256
  
  ee50c1b79d717d24cc437bca49281dadf02af4e8c20f8547ebf9489b303bb4fd
- SHA512
  
  8c9598b771b4439b457bbb77e324762902e78c26e327bd3def5135f971ce57e14fa3eb89fabfac2bcbdac6a91ec702d3e0cac1ce99e49d1d1d60d2e96d5d06f2
- SSDEEP
  
  192:G+qusvKU+Y73X2pGChXvu7I/Fxf82NgYMujcvW1ra9sgfxIZH2t:azvKL2G3hXvustN881MD4rDgf2h2t
Score

1^/10
behavioral2
- Target
  
  $_32_/jre/jre/bin/JavaAccessBridge-64.dll
- Size
  
  145KB
- MD5
  
  59c55f767c319db894a647fce4fd474b
- SHA1
  
  a366628717100faa4ac04252e5ae332cd7c84e8e
- SHA256
  
  e65954f1e3627cf1e4137e453a3aeaca8bf01362002ecc9e4a7614ccc4096770
- SHA512
  
  311deca007d357bff8f402d85f5844ec68a4158f99093ee9e653fe41aa0afb2e6e4a1c11c35d624a345f77879507bcc56e49f88dfd3770d1fc212f81caacb54e
- SSDEEP
  
  3072:ISx77e9dxjpc3oIuP+P6HtEXjwYK4paEe/zNb78kLNZ7mi2YKJZuJzDcQPpsjyuY:ISxve9dxjpc3oZtE1Am+/
Score

1^/10
behavioral3
- Target
  
  $_32_/jre/jre/bin/WindowsAccessBridge-64.dll
- Size
  
  126KB
- MD5
  
  503a3bf2c83e44f4568549dc79e95c8e
- SHA1
  
  752921c86aebd099f1a7d8d5c2107d976a37625b
- SHA256
  
  c93be3ea1c3c7111a60b195f3b78b642b8c116da838076bb777c17967062607b
- SHA512
  
  7e0bd9e0ba2a449e9d3dce4c00784b4f3c0e6c82b4e919646d90eb8edcf16b343f9c5f9216193c5f10ea5fb60ccd4711954752fba53f1486bfcfd933d2ea58c5
- SSDEEP
  
  3072:Nx4WHvWU5vXkYh9Thq+6L7CRvhEq66ZqLPCP:z4++UVRh9Tl6L7CRjD8m
Score

1^/10
behavioral4
- Target
  
  $_32_/jre/jre/bin/attach.dll
- Size
  
  22KB
- MD5
  
  2cd22931c8a920d467748e557531ef03
- SHA1
  
  58893f2f0172cf8bfedfb33dabd5775988399945
- SHA256
  
  f0b3a08651d575b3f28c4d6a6b96c66f5e082e26d48500e9989caa9ee87b5a84
- SHA512
  
  2ec979d1f485ed02cb32d5fed4bb6e9de52f8e187f921be8740841da711adcbaffd0c4d2cac50d20013cef46cc156480652866c01a11bc44fcac03656240a031
- SSDEEP
  
  384:WUthDJ8PFnpr99nq5Da78K+1TuXK0TSIPCP6FV+EttN881MEEWDgf2hzNU/:WUFapr9Ahok10S0DjCiMEEWUf2hxU/
Score

1^/10
behavioral5
- Target
  
  $_32_/jre/jre/bin/awt.dll
- Size
  
  1.5MB
- MD5
  
  4cbd35e2af4ede5aed175270ddfbe1a7
- SHA1
  
  8c8ef768a7637919ecc335304df3c6407c597574
- SHA256
  
  458a50dd8991bbdcc12573a3043b3177a92bbaface3570f2e05a5f39a8a1271a
- SHA512
  
  6f8750ba2c2849c0014a5a05f397b6258a4fe56cfe0bb3c2ec485b4db2547b89426bd1d9307e712875758b6ce8180b294d773d2ace7f14ddda472ed7a1a9ebef
- SSDEEP
  
  24576:Et7n3qR7G6ysYOL/8yW30EcLu1RfGSShv+EO+SqgEHLSzr4VKby034zfr:Et7n3qRDysYw/8z30EcLu157ShsiInJ2
Score

1^/10
behavioral6
- Target
  
  $_32_/jre/jre/bin/dt_shmem.dll
- Size
  
  30KB
- MD5
  
  7c7a979d5034e9d86f687cd545331715
- SHA1
  
  dcae3192c632bc30a1734e65dd68c1df57ab6673
- SHA256
  
  decadb411278ec8180903d27d486ffdba22b9a971fb1d12cbbe07369abdf7333
- SHA512
  
  9ec2b5cee16025d160991e9fccd84685da3cc9c87d633867f14b92f5796d0ec4dcd8c97a7d96871c58a7722f2f5075390aad3a9b918df27facf87530fc76f592
- SSDEEP
  
  768:lfmDj1i/zS1Ha0KFMkLSs8vFax9CiM0Uf2h5:lfm31i7SvKP8vW9CP0Ufw
Score

1^/10
behavioral7
- Target
  
  $_32_/jre/jre/bin/dt_socket.dll
- Size
  
  25KB
- MD5
  
  b0300d11ef96497a0681ab3dce8445d8
- SHA1
  
  a47d9a4376e3eb4246c1837fcf9650995e345cbe
- SHA256
  
  d18a0f2b25696633276aef41e0e41266e343ec273ff1de76ab96915bf7d4ebd8
- SHA512
  
  7dd3c053206240d2dcebd174989ad1ccdaea48c0a8ecbd7d7564f11a662e749b8906f13a703335935b3de42a50f11a8936461926909cdfd44b569007a4255c1c
- SSDEEP
  
  384:X5NstlT0TmZU06hKYxU1recYfLwZJ17lUftN881MB3Dgf2he/:X5NGY8UfhHxU1qcwLmb+lCiMtUf2h+
Score

1^/10
behavioral8
- Target
  
  $_32_/jre/jre/bin/fontmanager.dll
- Size
  
  1.1MB
- MD5
  
  990fb668b61c5530d63c2aa91f9f70fc
- SHA1
  
  33daa09607d215a68aab9f6fc360ce95b179a86f
- SHA256
  
  f41695f74a142cd7367b83c876e0e12b5661584e1fd196b98a6ae931ba59829d
- SHA512
  
  f886d3f351f915415fecd115f35c6b169a17fceabcd300d7ef13ace0e6ef65db554a073acd2c4e403b89c456f5e038bd9bb5857b14d32278b72593950254fd82
- SSDEEP
  
  24576:FAce2g77TGckmK2AlGUaZVv4dSR+Y8w0DHKO0ZuOj/frDPX:FAce2g77TGctK2AlpcVvAnw0DHrOjrD/
Score

1^/10
behavioral9
- Target
  
  $_32_/jre/jre/bin/freetype.dll
- Size
  
  616KB
- MD5
  
  04c283f26b23146a4301678e5013dd0d
- SHA1
  
  0ace62f1b446d968a3d359b67187b723f2b25b21
- SHA256
  
  bb5aa96ada659e33766e1c9c804ce73596f13788617d7b447b67873a3932b1cf
- SHA512
  
  59d8aaab9c4811a79fdb7770cd9d6bfc6c45cdcedc8741a6fec6292b6366f08510438d4057eeacf7cd253a4e1bf9f7cc2f373656086a81f2a3503ce85eab1ecf
- SSDEEP
  
  12288:qMwq+9//xpUQu9N+YhAk2l9AlLH7Av2iUb566aPfEWmoIOshPKu:49//xpNu9N+YhAk2U1iUvJZoIjhCu
Score

1^/10
behavioral10
- Target
  
  $_32_/jre/jre/bin/hprof.dll
- Size
  
  155KB
- MD5
  
  6fc40ea2fc14431822aaf1a4597baf28
- SHA1
  
  57ea139ef86c8b98de3f45fc5237afc0a591d5e6
- SHA256
  
  c7e64a3a022dd19254f02e9077e43688b83b6fbdd80079e72d1e685826b1ed58
- SHA512
  
  44aa23498946c2cdf1a0fe1c0391581cc75f8a67b53c94668b6c0c2fc729b34c0baf4a2d7e5a49a0851a5a33700a2d2f21d5b8a823f9eb4e1b35a4f477834afc
- SSDEEP
  
  3072:66bSTjx/1RWaJ5cb5CqJ4umThfAJ48shTJ97zns8OpB/UxBvlXOCw:66bSTlNEYKbEqAThYFshnnwULvcx
Score

1^/10
behavioral11
- Target
  
  $_32_/jre/jre/bin/instrument.dll
- Size
  
  121KB
- MD5
  
  cd2ad0f401cbac1dc53ee0f7647422dd
- SHA1
  
  37b6bb252dfd6d03e2f03b914c3f297a2e9b5ba1
- SHA256
  
  73d5397eb96a2ebaac6fb96baef6caa3cca4cba75c4b8378bedf9139f9c5574f
- SHA512
  
  7a2c73e7b834c462a6d1a2b2b396bff9ca5e7f190f55dd7673c7c7821bce2b75236a9ec7508054cd5847e7e899331804078d34189cb142618b2d6aa0276aa494
- SSDEEP
  
  3072:XkKtnAwfQF+WRVTHlZ7Vo5kUfTBfhWAHjbDZXCS:XtnzoF+KVTFZ7y5kUfTBlPD9/
Score

1^/10
behavioral12
- Target
  
  $_32_/jre/jre/bin/j2pcsc.dll
- Size
  
  19KB
- MD5
  
  8bf41f8d37987e00f41bfd682176e30d
- SHA1
  
  5eb1c6e0a07b1ee2b4c9b77b25e0819de7e8e92c
- SHA256
  
  2cdc1317e81151eb225cf1762a8f73032417e86fd66b466b503e5072611c7000
- SHA512
  
  27814b62afc3119d371415eebf83aabb541064ae142aaf5644e9897aeedd8f26feab45c7ff68b36392c4158d931e07a90e7db6a57a5deab41d35778fa0153c7f
- SSDEEP
  
  384:mNNvJalGYd9zE1Rnx7pIF0Cgsyk6kpntN881MRDgf2h3DM:uvJAGYdi1dx7pK+QtCiMRUf2hw
Score

1^/10
behavioral13
- Target
  
  $_32_/jre/jre/bin/j2pkcs11.dll
- Size
  
  66KB
- MD5
  
  7fceded95227a588f1bafea3ad371376
- SHA1
  
  9f6e0fc94276a950fe0a410a4c9ebc2c2c928634
- SHA256
  
  5858d6f17542ab5e4b53e46277c3cb208e27f8ee78f0953e2bc0287df173cffe
- SHA512
  
  e8023aa546de8be5bc727ff6418f8c9a35a33de474e84ce8f85ffbcd7b6120a2a69d87736484d24c04c02fd809f3a95de916f47ab7598b9e948fbccb56e451bc
- SSDEEP
  
  1536:N8yxUDJixgSDBCx5EB2mv0AfvmkRbZT9SxnyWaB4/Pu0b19r7xn1bTPUAhU9hOBg:NW3jEB2mv0AJZ5tvCu
Score

1^/10
behavioral14
- Target
  
  $_32_/jre/jre/bin/jaas_nt.dll
- Size
  
  21KB
- MD5
  
  71a47a25f579255bea9a9555901b3e35
- SHA1
  
  93a3bc2a5cb4494b9430249ec683b66849da5c45
- SHA256
  
  247ccbe09f4ebc8d199a4fd51cf059be7d16b2553cb9fc901703d5b47005bc40
- SHA512
  
  ce1f9ffd58261e745c3bfd92142d9b2495912063843679df3928ec19d14b3ea4dbae14bf23c4efe9e2984a993a38f3ab6000ad8cf0dc75b3287514b504f8a479
- SSDEEP
  
  384:JtDlTP+dNkvpUB5hBOq6EPKtN881MCoDgf2h/:tqrCsPQCiMBUf2h/
Score

1^/10
behavioral15
- Target
  
  $_32_/jre/jre/bin/jabswitch.exe
- Size
  
  34KB
- MD5
  
  4cfff1e58d4b9d3d532176a19b9928ea
- SHA1
  
  e3e31973cc1bdb73138705dd3a2990b7cc89f8b8
- SHA256
  
  6b99c86dfe0c3a13b280ee256eed002a12969b7bedd40c41bff6b6ca13c5076b
- SHA512
  
  0ca15c8f6742ccdd17c4c236fa42f4ba5bd25371885f428688fed5a4426e46a0ddc5c0784f41940be562df10d79df3e7809cd10b4a69697d5995b941bcf734dd
- SSDEEP
  
  768:OTpuvVNlD40tlpGHFHUH9+nZF//95jiCiMYUf2hZ:YpuvVvD40XwlHUd+nB5jiCPYUfe
Score

1^/10
behavioral16
- Target
  
  $_32_/jre/jre/bin/java-rmi.exe
- Size
  
  16KB
- MD5
  
  ce137ca6c0cc7a7862fcba46ba426096
- SHA1
  
  947f20627f117ff8ec07d80e648025aec23cafe1
- SHA256
  
  03916314f804afb76757dec6475e86d1f7047cb60445931a974d48028734ff82
- SHA512
  
  abbd129412b2bb4479fd6dd6828c199605e8148d9b360090a439347054f12df1a59a91475e218d03b19ecbad4d434f38a064fcf3bae8702c275cdc7bb3143ea5
- SSDEEP
  
  192:YWKL2cQsTz1NnIIKEfoB7uefHI/Fxf82NgYMujbBzfa9sgfxIZHWG:YTeo1NnPKNNuefotN881MKB7Dgf2hWG
Score

1^/10
behavioral17
- Target
  
  $_32_/jre/jre/bin/java.dll
- Size
  
  155KB
- MD5
  
  e2fbadeb85647312c159902d2ad0f632
- SHA1
  
  102cf2ae33d3f9dc0647d1e2ced553e3dfee4a29
- SHA256
  
  2c9310973805cb1173f95775a7c36f75e9311eaeb75b89689d0418b2386e1c50
- SHA512
  
  10b87e1cb2c31a506351fb3425412b82422d97554a7328e27b0012dd8bce02be1201cce16e3b2d6495b5681c90cedc0d0079066c7b1f37e89227d74ff27ed6c0
- SSDEEP
  
  3072:FhPHJr3vnuNNOKoPZhsy7agVcUSSm6pSeuInVeVCV9k5FCj:h3vgN8hhjTpEDYTcG
Score

1^/10
behavioral18
- Target
  
  $_32_/jre/jre/bin/java.exe
- Size
  
  182KB
- MD5
  
  db3b69ba3008bb546c0378f4c583f1be
- SHA1
  
  942726d4b4f5167a71226d987ba7ce3e13037afe
- SHA256
  
  104a680cd2d00be9ac8c865b891b05099f056e51104f37726138302a276594bf
- SHA512
  
  77a1f4bd3ca54daf0414577a6cf1d5ef87880df658fb9b163ce18b6f6d9e38d38c3a5810ae69286b5c81a98ebc11b4c4f368abacb427d6e37e37ac48e7c5d991
- SSDEEP
  
  3072:mLHlBxEDtD909hzCMZC9TyKg/wTu1QdfdRVNPqEnHTBffsGuXDQOqBfCdw:mDxUDyb7ZC9Ty96ugfdRVNyAHTBlbfr
Score

1^/10
behavioral19
- Target
  
  $_32_/jre/jre/bin/java_crw_demo.dll
- Size
  
  29KB
- MD5
  
  875225143ba018c206f67f5e132cf28d
- SHA1
  
  d84a6b20ff6ebe34c4a358c51952d6e25256de11
- SHA256
  
  90c3a6e3a03554ff43d9c78fbc00c743fa996746599263ceb066c9db1487bc38
- SHA512
  
  3f0b20617b25d2bca775e9eaefcd04be9cb4cfcb4622a3de354a5988a2991aff76990a52c0eebd9b0c9a1644445fd216ceebde48b96a0f3b41aa8dc799f12068
- SSDEEP
  
  768:kNAYX7bzYUknm2ZlmUdooBEKCiMflUf2hYT:OAYjYCZVoBEKCPdUfxT
Score

1^/10
behavioral20
- Target
  
  $_32_/jre/jre/bin/javaw.exe
- Size
  
  183KB
- MD5
  
  c8bd3225864fc0d782b57a3868e644ba
- SHA1
  
  4f513ee467e057671131af70e8264a43c82c3bc5
- SHA256
  
  2d32a9c7bac580d5fdb74affb124c61319e66928a88b863f563d7239eae96911
- SHA512
  
  37f41a93358dc0857f8b989605fb4c73fc252a85dcc3ef60543c4ba44e8bcd0aeee738aaa9249bb94ecbca7301fdc91bc7c3a31b8387135f4a76748d520d4fee
- SSDEEP
  
  3072:SHoKk7hT9dRXyknclPT65milGBc3O26FRvYEj5HTBfvvLLLXRuapT5BC7b:bKATr9yzlPTCBGSZ6Fl19HTBPFdzBe
Score

1^/10
behavioral21
- Target
  
  $_32_/jre/jre/bin/jawt.dll
- Size
  
  15KB
- MD5
  
  7517846c9d85512c14012572344bdaab
- SHA1
  
  644a075db72fabeb73ccd5d255c087715db2eb15
- SHA256
  
  1b567bf894978b20d5cc19ca1d5a69286b4cff637840659d848eaf44f7ae4f59
- SHA512
  
  ad9fc0c1186bf5cb85b01f8ca6b6a9f960706614d545fb80a750fac9c1bd48427d1c1d1f3889823a7b169c112d886174829a011ad7c8243e035ade31e7a17572
- SSDEEP
  
  192:ccbyqCTJf1U+we+bF3X96HcgTdI/Fxf82NgYMujJMBa9sgfxIZHX+p:cc/CTJf1tJ+VN68s+tN881MLDgf2hX+p
Score

1^/10
behavioral22
- Target
  
  $_32_/jre/jre/bin/jdwp.dll
- Size
  
  198KB
- MD5
  
  ec6f3c6d30dc34c2ad215a94f6f87ba5
- SHA1
  
  554278bcadb2eed0027731c00f791266c1ae4ab7
- SHA256
  
  c55eda8d0b824f5ce83ab04bbf409d015b6a2c96c18c4507fe609fd2fa396b34
- SHA512
  
  e334d36cfab4c9894ee52e3ef0bc9753b07d6927d0f85a17e439ba3c323cff20c8416b199075258ce5aef3410a88027b7851f352e5b28dc27175cc23c2d60150
- SSDEEP
  
  3072:qQE5AzFaiffbeBKlzFjXwfvCbDX2LvZyTv/yTUeGvlilIoBxqpjIiCN7yCSm:5a+BjAf+aIOIu6jIiCNOw
Score

1^/10
behavioral23
- Target
  
  $_32_/jre/jre/bin/jjs.exe
- Size
  
  16KB
- MD5
  
  aabcccca1b29536fe203611b92faab86
- SHA1
  
  be9b880b9ff78a0af7bb4dc5a196af6c6d6341ce
- SHA256
  
  66a8a08590af6b5af48e378f3b346803c4151b756e1ab9f253b936614a4be507
- SHA512
  
  57de159cf4ee2ffd4ae099ce6f8465a2c8a30880fbec71c2f5729fdd278d9fae7c1177a6898e2d56e9136bcc57e3ba8aea4684323c753df4c866e56ddfa1cfdc
- SSDEEP
  
  192:obFyTnT8YNOOIKEfomgefII/Fxf82NgYMujeGa9sgfxIZHVcGN:obqFNYKNmgefptN881MLGDgf2hXN
Score

1^/10
behavioral24
- Target
  
  $_32_/jre/jre/bin/jli.dll
- Size
  
  172KB
- MD5
  
  be1f638cb1d2e1b26cf5c6158fdb0b57
- SHA1
  
  bb4b1299bd7eb66d86b59125b1d59b236b112579
- SHA256
  
  9e7affe633659d2ae0310b20fe08ce322879f434db7c21a33bf48b232c982e82
- SHA512
  
  b4d1c11e8f8413585db313f53afc20264f700be2059ada6b23729a01e42e15b51367d8a6ced4002890761121df70233fb321d451ab9f32c27abc21666f1bb228
- SSDEEP
  
  3072:iAD/gt9vrk2V7KQPP4Of2MX7Ve1jTKT0aSwGAk1oVmTBfF5PeIW5tJCp:iAD0vY2VGy4ObXcJ2TpSwGAgqmTBm5vA
Score

1^/10
behavioral25
- Target
  
  $_32_/jre/jre/bin/jpeg.dll
- Size
  
  160KB
- MD5
  
  9d8d7ad58057521800ee040dd43926e8
- SHA1
  
  083f7fd2593fcb4cb05e65541a4ddefe329e8a17
- SHA256
  
  94fe147df03b92a14eb3ba4d7019e897db519c17c363334af845e5291c0a8de8
- SHA512
  
  52066063dea5a964dfdbd0af2301bfae73007f086801ba079b491fa60b6250a62934903da38348097ef9ad1c4aecd01bb5cbc8ab13777daa7c1624a6cdb58d0a
- SSDEEP
  
  3072:jhPaERCaqNvBBEzBePm3oWrk7jvyYeoymxHJ8oXzbezmBhLW219l9m48U/CfCR:dywCaqNvBBu6m3xr6jqYRJHJ8oXzUmB3
Score

1^/10
behavioral26
- Target
  
  $_32_/jre/jre/bin/jsdt.dll
- Size
  
  19KB
- MD5
  
  4dfc27a29f06f1708013a9ae6478cb26
- SHA1
  
  0aa345569af2b44915b5115a7c1504466fd6882c
- SHA256
  
  8a98383e1690701e5999ca01b98bead7d80e06e36543ebb803984d439f40e7f9
- SHA512
  
  616c5f8d5d25448253169cd20e99416d4f8088166aac3471460b9d7d1c963554fbe9499e13465453d9483395710bdd2815878b6acefb5f7751988575167ebf64
- SSDEEP
  
  384:EGfP60j6bZ2rfkyqeSMmGm8aRhSqoW5a6faBtN881Mk6Dgf2hA:pS6COTFPmGmz5QvCiMLUf2hA
Score

1^/10
behavioral27
- Target
  
  $_32_/jre/jre/bin/jsound.dll
- Size
  
  35KB
- MD5
  
  09f00fbdfacad87e4cd38ce0e68c5ee2
- SHA1
  
  8cc9b1e1cfdfbf7158ada1239b13dd42b1db8292
- SHA256
  
  50a39e67479f8f5568bcb89995214b57d1143acf19bab4566fe297dd279d84b2
- SHA512
  
  a38124e2300cfb149f940031d6e8c8a9ef02fd60d9350c035ab66e57d8c3b2bc89c9691651ab169febe62d4920962ecb7784ca427d2a56569636a1c3afdad738
- SSDEEP
  
  768:dVea88w3VzZBr/UjCL5IFYtxMcCiMiUf2h4:HeabmN3aYtx9CPiUfp
Score

1^/10
behavioral28
- Target
  
  $_32_/jre/jre/bin/jsoundds.dll
- Size
  
  31KB
- MD5
  
  931346bc7ba66d201027e0d664f6826b
- SHA1
  
  d41177271079e84193db76eed4c993245fc4b5d9
- SHA256
  
  53d6d92d5949cc7bd0df0ff487c995ecf5af85c288e002645fb54e55aa8970a6
- SHA512
  
  43373fbacb1fd2b48e855e61037cb757a3eee5cc08a8a380497d56cd54da6232d710abc8f32871a3a33ad1f6f5c011cd2e37309d2bd06031ee85f2979c110d61
- SSDEEP
  
  768:zg81s0ubk6QzZ2QlpHrSkfzCiM0Uf2hpI:N1nfHrSKzCP0Ufh
Score

1^/10
behavioral29
- Target
  
  $_32_/lib/antlr4-runtime-4.1.jar
- Size
  
  246KB
- MD5
  
  670009558e7c71d9bbb92e329b45cc59
- SHA1
  
  3f42a2396857e4b7d088a63ec265fd7817b14d7a
- SHA256
  
  a80a47161618c3a1f318df924ba6ed26ff5420c8e2e806d50459171c8eb8d512
- SHA512
  
  e46f8cade2cc00e5b37fab6f63b4688d054562a73b0201dcf93e2e0a115409258fc43b19e7e20d3bef0ff5daa8be32b44cdcd3cb82368b940fe175f1ccf1ccc8
- SSDEEP
  
  6144:P3Lfnzk/3IxSolLWSYs6iLEs5hfACKUazyLHyXC:P7fzJL/6iLhojUazyLp
Score

7^/10

discovery
- Modifies file permissions
  discovery
behavioral30
- Target
  
  $_32_/lib/asm-5.0.3.jar
- Size
  
  51KB
- MD5
  
  ccebee99fb8cdd50e1967680a2eac0ba
- SHA1
  
  dcc2193db20e19e1feca8b1240dbbc4e190824fa
- SHA256
  
  71c4f78e437b8fdcd9cc0dfd2abea8c089eb677005a6a5cff320206cc52b46cc
- SHA512
  
  d35bda1ecf09753572fd0582d2e79f07bbd563ca936d1238690d4bedaf57c68512580c49aba75d03fda41db27b84fc5cb276b8cfd990167ccc9dbecbc69f388d
- SSDEEP
  
  1536:tA7yhw44dwmgi3EOqSC1JwZ3oVnDaQM26rqebvrN+:O74uBxXoqInDax26Wqvx+
Score

7^/10

discovery
- Modifies file permissions
  discovery
behavioral31
- Target
  
  $_32_/lib/asm-all-7.0.1.jar
- Size
  
  349KB
- MD5
  
  0377ec7c0221fd9512ce0a236fa653ac
- SHA1
  
  77aac078db2af4f2de8441c3bfc48495f64cb889
- SHA256
  
  7bf4fff54b04191569b111c83bb62e4b82dda3a1deea7e6ab7e4826994badaa8
- SHA512
  
  e1e72a671cba939af053f1e6e7b5ba0a6887cb7687468a1f193468e49b504904afcaadbf5bf099210cad9a57f2d2464f669c100489b4d775280af38fab3d04ea
- SSDEEP
  
  6144:8a1uy9b1eYKx4UyPRPo7KuGyVumYJ3nqx8C+pHkZu8nyT:83yaYmp6RQ7KuhVumm6SEZxnyT
Score

7^/10

discovery
- Modifies file permissions
  discovery
behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

File and Directory Permissions Modification

T1222

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Loads dropped DLL

Checks installed software on the system

Modifies file permissions

Modifies file permissions

Modifies file permissions

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32