jupyter | ace82e39c0c7bba7b66f589ae8523aeffb1b34aeafe6d2f1f5ed873a0b980936 | Triage

Sharing

General

Target

powershell-1.ps1
Size

3.5MB
Sample

240329-rf6n4sag99
MD5

91928587438750fa827193b6299392c3
SHA1

8a758216da9043e5d21457335c522afe037b3f0e
SHA256

ace82e39c0c7bba7b66f589ae8523aeffb1b34aeafe6d2f1f5ed873a0b980936
SHA512

224e6479f27b0a96363e6c863063b37fe696124a8d5357495bd81a56dc8c74a5c17d5d847acb1f085136406ba69b7503a911e125e8061a3a723f1f84ecc18c2c
SSDEEP

49152:rOZgaPlGsa4cA+szFtMe3Ba0Uyz8JZC37YHt:j

Score

10^/10

jupyter backdoor stealer trojan

Malware Config

Targets

- Target
  
  powershell-1.ps1
- Size
  
  3.5MB
- MD5
  
  91928587438750fa827193b6299392c3
- SHA1
  
  8a758216da9043e5d21457335c522afe037b3f0e
- SHA256
  
  ace82e39c0c7bba7b66f589ae8523aeffb1b34aeafe6d2f1f5ed873a0b980936
- SHA512
  
  224e6479f27b0a96363e6c863063b37fe696124a8d5357495bd81a56dc8c74a5c17d5d847acb1f085136406ba69b7503a911e125e8061a3a723f1f84ecc18c2c
- SSDEEP
  
  49152:rOZgaPlGsa4cA+szFtMe3Ba0Uyz8JZC37YHt:j
Score

10^/10

jupyter backdoor stealer trojan
- Jupyter, SolarMarker
  Jupyter is a backdoor and infostealer first seen in mid 2020.
  backdoor trojan stealer jupyter
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

jupyterbackdoorstealertrojan

behavioral2

jupyterbackdoorstealertrojan

behavioral3

jupyterbackdoorstealertrojan