Overview

overview

7

Static

static

3

WBNS X FNF...NF.exe

windows7-x64

6

WBNS X FNF...NF.exe

windows10-2004-x64

6

WBNS X FNF...lc.dll

windows7-x64

1

WBNS X FNF...lc.dll

windows10-2004-x64

1

WBNS X FNF...re.dll

windows7-x64

1

WBNS X FNF...re.dll

windows10-2004-x64

1

WBNS X FNF...me.dll

windows7-x64

1

WBNS X FNF...me.dll

windows10-2004-x64

1

WBNS X FNF...ion.js

windows7-x64

3

WBNS X FNF...ion.js

windows10-2004-x64

3

WBNS X FNF...ter.js

windows7-x64

3

WBNS X FNF...ter.js

windows10-2004-x64

3

WBNS X FNF...in.dll

windows7-x64

1

WBNS X FNF...in.dll

windows10-2004-x64

1

WBNS X FNF...in.dll

windows7-x64

1

WBNS X FNF...in.dll

windows10-2004-x64

1

WBNS X FNF...in.dll

windows7-x64

1

WBNS X FNF...in.dll

windows10-2004-x64

1

WBNS X FNF...in.dll

windows7-x64

1

WBNS X FNF...in.dll

windows10-2004-x64

1

WBNS X FNF...in.dll

windows7-x64

1

WBNS X FNF...in.dll

windows10-2004-x64

1

WBNS X FNF...in.dll

windows7-x64

1

WBNS X FNF...in.dll

windows10-2004-x64

1

WBNS X FNF...in.dll

windows7-x64

1

WBNS X FNF...in.dll

windows10-2004-x64

1

WBNS X FNF....2.jar

windows7-x64

1

WBNS X FNF....2.jar

windows10-2004-x64

7

WBNS X FNF....2.jar

windows7-x64

1

WBNS X FNF....2.jar

windows10-2004-x64

7

WBNS X FNF...in.dll

windows7-x64

1

WBNS X FNF...in.dll

windows10-2004-x64

1

Analysis

  • max time kernel
    137s
  • max time network
    243s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240226-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240226-enlocale:en-usos:windows10-2004-x64system
  • submitted
    23-05-2024 01:01

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    WBNS X FNF V1/plugins/access/libbluray-j2se-1.3.2.jar

  • Size

    752KB

  • MD5

    1eae419266af6a1ee1be0dc2bf570fb9

  • SHA1

    8e81715af0a50c9ba4fb2764b242b7ceb83f814f

  • SHA256

    bd7f9341ab918d87914ce27a04490f58cc7b20c6a1a1244a2a5f3b94c9fbab0e

  • SHA512

    a56cea84aa36973cda2c2baf594907522e8130cae5ec109f55fbf1760c660f1afc6d07cde9b30fb29a2a535c3b5ffde7708e4f537980661b7813d4ec6904a0f0

  • SSDEEP

    12288:F7vKzuS26QJ1i9NXNtj9NtVIrNcnK2Afp0Bk0dktvQAWouboILYU5:F7vKzmhi9NbzrEcnK2C+BkqktLzubAU5

Score
7/10
discovery

Malware Config

Signatures

  • Modifies file permissions 1 TTPs 1 IoCs
    discovery
  • Suspicious use of WriteProcessMemory 2 IoCs

Processes

  • C:\Program Files (x86)\Common Files\Oracle\Java\javapath\java.exe
    java -jar "C:\Users\Admin\AppData\Local\Temp\WBNS X FNF V1\plugins\access\libbluray-j2se-1.3.2.jar"
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:1032
    • C:\Windows\system32\icacls.exe
      C:\Windows\system32\icacls.exe C:\ProgramData\Oracle\Java\.oracle_jre_usage /grant "everyone":(OI)(CI)M
      2⤵
      • Modifies file permissions
      PID:3612

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1032-2-0x000001F697180000-0x000001F6973F0000-memory.dmp

    Filesize

    2.4MB

    Download

  • memory/1032-11-0x000001F695970000-0x000001F695971000-memory.dmp

    Filesize

    4KB

    Download

  • memory/1032-13-0x000001F697180000-0x000001F6973F0000-memory.dmp

    Filesize

    2.4MB

    Download