e572ff4fe1b68f61503bc840d6574004dbae9416c8bf57fdf3991582711b7d60

Analysis

max time kernel
1198s
max time network
1159s
platform
windows10-2004_x64
resource
win10v2004-20240709-en
resource tags

arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system
submitted
26/07/2024, 14:35

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

315lcksh.jar
Size

2.4MB
MD5

edf0126856f19e6673cfa3a47529b72e
SHA1

d485dbc83d0d9b19d65b8c3b7d818cfdc644ec52
SHA256

e572ff4fe1b68f61503bc840d6574004dbae9416c8bf57fdf3991582711b7d60
SHA512

55120aae941c1840d8b9c1bff735ffc715fe76b729f81ddd349dcedb2e25e4669e40016a629639c0c6c5b4ee7f7cba169f351bcca44b35c249fc4b727ae8c565
SSDEEP

49152:OvacUC/gc28qqtoaCrptntt+peoCdSUuMGhZtehIXQ7o+ncTa9H:OCfC/9q6oaMHt4pi9up33H+aEH

Score

1^/10

Malware Config

Signatures

Suspicious behavior: EnumeratesProcesses 64 IoCs

pid	Process
3304	java.exe
3304	java.exe
3304	java.exe
3304	java.exe
3304	java.exe
3304	java.exe
3304	java.exe
3304	java.exe
3304	java.exe
3304	java.exe
3304	java.exe
3304	java.exe
3304	java.exe
3304	java.exe
3304	java.exe
3304	java.exe
3304	java.exe
3304	java.exe
3304	java.exe
3304	java.exe
3304	java.exe
3304	java.exe
3304	java.exe
3304	java.exe
3304	java.exe
3304	java.exe
3304	java.exe
3304	java.exe
3304	java.exe
3304	java.exe
3304	java.exe
3304	java.exe
3304	java.exe
3304	java.exe
3304	java.exe
3304	java.exe
3304	java.exe
3304	java.exe
3304	java.exe
3304	java.exe
3304	java.exe
3304	java.exe
3304	java.exe
3304	java.exe
3304	java.exe
3304	java.exe
3304	java.exe
3304	java.exe
3304	java.exe
3304	java.exe
3304	java.exe
3304	java.exe
3304	java.exe
3304	java.exe
3304	java.exe
3304	java.exe
3304	java.exe
3304	java.exe
3304	java.exe
3304	java.exe
3304	java.exe
3304	java.exe
3304	java.exe
3304	java.exe

Suspicious use of AdjustPrivilegeToken 64 IoCs

description	pid	Process
Token: SeDebugPrivilege	3304	java.exe
Token: SeDebugPrivilege	3304	java.exe
Token: SeDebugPrivilege	3304	java.exe
Token: SeDebugPrivilege	3304	java.exe
Token: SeDebugPrivilege	3304	java.exe
Token: SeDebugPrivilege	3304	java.exe
Token: SeDebugPrivilege	3304	java.exe
Token: SeDebugPrivilege	3304	java.exe
Token: SeDebugPrivilege	3304	java.exe
Token: SeDebugPrivilege	3304	java.exe
Token: SeDebugPrivilege	3304	java.exe
Token: SeDebugPrivilege	3304	java.exe
Token: SeDebugPrivilege	3304	java.exe
Token: SeDebugPrivilege	3304	java.exe
Token: SeDebugPrivilege	3304	java.exe
Token: SeDebugPrivilege	3304	java.exe
Token: SeDebugPrivilege	3304	java.exe
Token: SeDebugPrivilege	3304	java.exe
Token: SeDebugPrivilege	3304	java.exe
Token: SeDebugPrivilege	3304	java.exe
Token: SeDebugPrivilege	3304	java.exe
Token: SeDebugPrivilege	3304	java.exe
Token: SeDebugPrivilege	3304	java.exe
Token: SeDebugPrivilege	3304	java.exe
Token: SeDebugPrivilege	3304	java.exe
Token: SeDebugPrivilege	3304	java.exe
Token: SeDebugPrivilege	3304	java.exe
Token: SeDebugPrivilege	3304	java.exe
Token: SeDebugPrivilege	3304	java.exe
Token: SeDebugPrivilege	3304	java.exe
Token: SeDebugPrivilege	3304	java.exe
Token: SeDebugPrivilege	3304	java.exe
Token: SeDebugPrivilege	3304	java.exe
Token: SeDebugPrivilege	3304	java.exe
Token: SeDebugPrivilege	3304	java.exe
Token: SeDebugPrivilege	3304	java.exe
Token: SeDebugPrivilege	3304	java.exe
Token: SeDebugPrivilege	3304	java.exe
Token: SeDebugPrivilege	3304	java.exe
Token: SeDebugPrivilege	3304	java.exe
Token: SeDebugPrivilege	3304	java.exe
Token: SeDebugPrivilege	3304	java.exe
Token: SeDebugPrivilege	3304	java.exe
Token: SeDebugPrivilege	3304	java.exe
Token: SeDebugPrivilege	3304	java.exe
Token: SeDebugPrivilege	3304	java.exe
Token: SeDebugPrivilege	3304	java.exe
Token: SeDebugPrivilege	3304	java.exe
Token: SeDebugPrivilege	3304	java.exe
Token: SeDebugPrivilege	3304	java.exe
Token: SeDebugPrivilege	3304	java.exe
Token: SeDebugPrivilege	3304	java.exe
Token: SeDebugPrivilege	3304	java.exe
Token: SeDebugPrivilege	3304	java.exe
Token: SeDebugPrivilege	3304	java.exe
Token: SeDebugPrivilege	3304	java.exe
Token: SeDebugPrivilege	3304	java.exe
Token: SeDebugPrivilege	3304	java.exe
Token: SeDebugPrivilege	3304	java.exe
Token: SeDebugPrivilege	3304	java.exe
Token: SeDebugPrivilege	3304	java.exe
Token: SeDebugPrivilege	3304	java.exe
Token: SeDebugPrivilege	3304	java.exe
Token: SeDebugPrivilege	3304	java.exe

Suspicious use of SetWindowsHookEx 2 IoCs

pid	Process
3304	java.exe
3304	java.exe

C:\Program Files (x86)\Common Files\Oracle\Java\javapath\java.exe
java -jar C:\Users\Admin\AppData\Local\Temp\315lcksh.jar
1⤵
- Suspicious behavior: EnumeratesProcesses
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of SetWindowsHookEx
PID:3304

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/3304-2-0x00000216E40F0000-0x00000216E4360000-memory.dmp

Filesize
2.4MB

Download
memory/3304-14-0x00000216E1BC0000-0x00000216E1BC1000-memory.dmp

Filesize
4KB

Download
memory/3304-22-0x00000216E4360000-0x00000216E4370000-memory.dmp

Filesize
64KB

Download
memory/3304-24-0x00000216E4370000-0x00000216E4380000-memory.dmp

Filesize
64KB

Download
memory/3304-26-0x00000216E1BC0000-0x00000216E1BC1000-memory.dmp

Filesize
4KB

Download
memory/3304-27-0x00000216E4380000-0x00000216E4390000-memory.dmp

Filesize
64KB

Download
memory/3304-30-0x00000216E4390000-0x00000216E43A0000-memory.dmp

Filesize
64KB

Download
memory/3304-31-0x00000216E43A0000-0x00000216E43B0000-memory.dmp

Filesize
64KB

Download
memory/3304-33-0x00000216E43B0000-0x00000216E43C0000-memory.dmp

Filesize
64KB

Download
memory/3304-38-0x00000216E43D0000-0x00000216E43E0000-memory.dmp

Filesize
64KB

Download
memory/3304-37-0x00000216E43C0000-0x00000216E43D0000-memory.dmp

Filesize
64KB

Download
memory/3304-43-0x00000216E43E0000-0x00000216E43F0000-memory.dmp

Filesize
64KB

Download
memory/3304-45-0x00000216E43F0000-0x00000216E4400000-memory.dmp

Filesize
64KB

Download
memory/3304-46-0x00000216E40F0000-0x00000216E4360000-memory.dmp

Filesize
2.4MB

Download
memory/3304-47-0x00000216E4400000-0x00000216E4410000-memory.dmp

Filesize
64KB

Download
memory/3304-51-0x00000216E4360000-0x00000216E4370000-memory.dmp

Filesize
64KB

Download
memory/3304-53-0x00000216E4420000-0x00000216E4430000-memory.dmp

Filesize
64KB

Download
memory/3304-52-0x00000216E4410000-0x00000216E4420000-memory.dmp

Filesize
64KB

Download
memory/3304-55-0x00000216E4430000-0x00000216E4440000-memory.dmp

Filesize
64KB

Download
memory/3304-54-0x00000216E4370000-0x00000216E4380000-memory.dmp

Filesize
64KB

Download
memory/3304-56-0x00000216E1BC0000-0x00000216E1BC1000-memory.dmp

Filesize
4KB

Download
memory/3304-60-0x00000216E4440000-0x00000216E4450000-memory.dmp

Filesize
64KB

Download
memory/3304-59-0x00000216E4380000-0x00000216E4390000-memory.dmp

Filesize
64KB

Download
memory/3304-64-0x00000216E4390000-0x00000216E43A0000-memory.dmp

Filesize
64KB

Download
memory/3304-65-0x00000216E4450000-0x00000216E4460000-memory.dmp

Filesize
64KB

Download
memory/3304-69-0x00000216E4460000-0x00000216E4470000-memory.dmp

Filesize
64KB

Download
memory/3304-68-0x00000216E43A0000-0x00000216E43B0000-memory.dmp

Filesize
64KB

Download
memory/3304-67-0x00000216E1BC0000-0x00000216E1BC1000-memory.dmp

Filesize
4KB

Download
memory/3304-72-0x00000216E4470000-0x00000216E4480000-memory.dmp

Filesize
64KB

Download
memory/3304-71-0x00000216E43B0000-0x00000216E43C0000-memory.dmp

Filesize
64KB

Download
memory/3304-79-0x00000216E4480000-0x00000216E4490000-memory.dmp

Filesize
64KB

Download
memory/3304-78-0x00000216E43D0000-0x00000216E43E0000-memory.dmp

Filesize
64KB

Download
memory/3304-77-0x00000216E43C0000-0x00000216E43D0000-memory.dmp

Filesize
64KB

Download
memory/3304-87-0x00000216E44A0000-0x00000216E44B0000-memory.dmp

Filesize
64KB

Download
memory/3304-86-0x00000216E4490000-0x00000216E44A0000-memory.dmp

Filesize
64KB

Download
memory/3304-85-0x00000216E43E0000-0x00000216E43F0000-memory.dmp

Filesize
64KB

Download
memory/3304-89-0x00000216E44B0000-0x00000216E44C0000-memory.dmp

Filesize
64KB

Download
memory/3304-88-0x00000216E43F0000-0x00000216E4400000-memory.dmp

Filesize
64KB

Download
memory/3304-91-0x00000216E4400000-0x00000216E4410000-memory.dmp

Filesize
64KB

Download
memory/3304-92-0x00000216E44C0000-0x00000216E44D0000-memory.dmp

Filesize
64KB

Download
memory/3304-94-0x00000216E4410000-0x00000216E4420000-memory.dmp

Filesize
64KB

Download
memory/3304-96-0x00000216E44D0000-0x00000216E44E0000-memory.dmp

Filesize
64KB

Download
memory/3304-98-0x00000216E39F0000-0x00000216E39F1000-memory.dmp

Filesize
4KB

Download
memory/3304-95-0x00000216E4420000-0x00000216E4430000-memory.dmp

Filesize
64KB

Download
memory/3304-106-0x00000216E1BC0000-0x00000216E1BC1000-memory.dmp

Filesize
4KB

Download
memory/3304-108-0x00000216E4430000-0x00000216E4440000-memory.dmp

Filesize
64KB

Download
memory/3304-109-0x00000216E44E0000-0x00000216E44F0000-memory.dmp

Filesize
64KB

Download
memory/3304-110-0x00000216E4440000-0x00000216E4450000-memory.dmp

Filesize
64KB

Download
memory/3304-111-0x00000216E1BC0000-0x00000216E1BC1000-memory.dmp

Filesize
4KB

Download
memory/3304-112-0x00000216E4450000-0x00000216E4460000-memory.dmp

Filesize
64KB

Download
memory/3304-114-0x00000216E4460000-0x00000216E4470000-memory.dmp

Filesize
64KB

Download
memory/3304-115-0x00000216E4470000-0x00000216E4480000-memory.dmp

Filesize
64KB

Download
memory/3304-117-0x00000216E4480000-0x00000216E4490000-memory.dmp

Filesize
64KB

Download
memory/3304-119-0x00000216E44A0000-0x00000216E44B0000-memory.dmp

Filesize
64KB

Download
memory/3304-118-0x00000216E4490000-0x00000216E44A0000-memory.dmp

Filesize
64KB

Download
memory/3304-120-0x00000216E44F0000-0x00000216E4500000-memory.dmp

Filesize
64KB

Download
memory/3304-122-0x00000216E44B0000-0x00000216E44C0000-memory.dmp

Filesize
64KB

Download
memory/3304-124-0x00000216E44C0000-0x00000216E44D0000-memory.dmp

Filesize
64KB

Download
memory/3304-125-0x00000216E44D0000-0x00000216E44E0000-memory.dmp

Filesize
64KB

Download
memory/3304-126-0x00000216E44E0000-0x00000216E44F0000-memory.dmp

Filesize
64KB

Download
memory/3304-128-0x00000216E4500000-0x00000216E4510000-memory.dmp

Filesize
64KB

Download
memory/3304-129-0x00000216E44F0000-0x00000216E4500000-memory.dmp

Filesize
64KB

Download
memory/3304-133-0x00000216E4510000-0x00000216E4520000-memory.dmp

Filesize
64KB

Download
memory/3304-137-0x00000216E4500000-0x00000216E4510000-memory.dmp

Filesize
64KB

Download
memory/3304-142-0x00000216E4520000-0x00000216E4530000-memory.dmp

Filesize
64KB

Download
memory/3304-143-0x00000216E4510000-0x00000216E4520000-memory.dmp

Filesize
64KB

Download
memory/3304-145-0x00000216E4530000-0x00000216E4540000-memory.dmp

Filesize
64KB

Download
memory/3304-146-0x00000216E4520000-0x00000216E4530000-memory.dmp

Filesize
64KB

Download
memory/3304-150-0x00000216E4530000-0x00000216E4540000-memory.dmp

Filesize
64KB

Download
memory/3304-151-0x00000216E4540000-0x00000216E4550000-memory.dmp

Filesize
64KB

Download
memory/3304-154-0x00000216E4550000-0x00000216E4560000-memory.dmp

Filesize
64KB

Download
memory/3304-159-0x00000216E4540000-0x00000216E4550000-memory.dmp

Filesize
64KB

Download
memory/3304-161-0x00000216E4550000-0x00000216E4560000-memory.dmp

Filesize
64KB

Download
memory/3304-162-0x00000216E4560000-0x00000216E4570000-memory.dmp

Filesize
64KB

Download
memory/3304-168-0x00000216E4560000-0x00000216E4570000-memory.dmp

Filesize
64KB

Download
memory/3304-169-0x00000216E4570000-0x00000216E4580000-memory.dmp

Filesize
64KB

Download
memory/3304-173-0x00000216E4570000-0x00000216E4580000-memory.dmp

Filesize
64KB

Download
memory/3304-176-0x00000216E4580000-0x00000216E4590000-memory.dmp

Filesize
64KB

Download
memory/3304-177-0x00000216E4590000-0x00000216E45A0000-memory.dmp

Filesize
64KB

Download
memory/3304-182-0x00000216E45A0000-0x00000216E45B0000-memory.dmp

Filesize
64KB

Download
memory/3304-184-0x00000216E4580000-0x00000216E4590000-memory.dmp

Filesize
64KB

Download
memory/3304-185-0x00000216E4590000-0x00000216E45A0000-memory.dmp

Filesize
64KB

Download
memory/3304-188-0x00000216E45B0000-0x00000216E45C0000-memory.dmp

Filesize
64KB

Download
memory/3304-189-0x00000216E45A0000-0x00000216E45B0000-memory.dmp

Filesize
64KB

Download
memory/3304-193-0x00000216E45C0000-0x00000216E45D0000-memory.dmp

Filesize
64KB

Download
memory/3304-196-0x00000216E45D0000-0x00000216E45E0000-memory.dmp

Filesize
64KB

Download
memory/3304-197-0x00000216E45B0000-0x00000216E45C0000-memory.dmp

Filesize
64KB

Download
memory/3304-198-0x00000216E45C0000-0x00000216E45D0000-memory.dmp

Filesize
64KB

Download
memory/3304-199-0x00000216E45D0000-0x00000216E45E0000-memory.dmp

Filesize
64KB

Download
memory/3304-203-0x00000216E45E0000-0x00000216E45F0000-memory.dmp

Filesize
64KB

Download
memory/3304-205-0x00000216E45E0000-0x00000216E45F0000-memory.dmp

Filesize
64KB

Download
memory/3304-209-0x00000216E45F0000-0x00000216E4600000-memory.dmp

Filesize
64KB

Download
memory/3304-211-0x00000216E45F0000-0x00000216E4600000-memory.dmp

Filesize
64KB

Download
memory/3304-213-0x00000216E4600000-0x00000216E4610000-memory.dmp

Filesize
64KB

Download
memory/3304-218-0x00000216E4600000-0x00000216E4610000-memory.dmp

Filesize
64KB

Download
memory/3304-225-0x00000216E4610000-0x00000216E4620000-memory.dmp

Filesize
64KB

Download
memory/3304-229-0x00000216E4620000-0x00000216E4630000-memory.dmp

Filesize
64KB

Download
memory/3304-234-0x00000216E4630000-0x00000216E4640000-memory.dmp

Filesize
64KB

Download
memory/3304-236-0x00000216E4610000-0x00000216E4620000-memory.dmp

Filesize
64KB

Download
memory/3304-238-0x00000216E4620000-0x00000216E4630000-memory.dmp

Filesize
64KB

Download
memory/3304-241-0x00000216E4630000-0x00000216E4640000-memory.dmp

Filesize
64KB

Download
memory/3304-242-0x00000216E4640000-0x00000216E4650000-memory.dmp

Filesize
64KB

Download
memory/3304-246-0x00000216E4650000-0x00000216E4660000-memory.dmp

Filesize
64KB

Download