087a3b87252a021f6f3696f496d4fd890f28fc31735d8f850aa1184ed7bf59c9 | Triage

Resubmissions

10/08/2024, 04:23

240810-ez4mmszclb 7

10/08/2024, 04:20

240810-eyfjesvhrm 1

Sharing

Copy URL Twitter E-mail

General

Target

087A3B.jar
Size

275KB
Sample

240810-ez4mmszclb
MD5

37d9c9c214040d54e8d7219b851ca3f2
SHA1

ea8f7ea6f0e3dd53d06c8fc4b7a956ec0642051f
SHA256

087a3b87252a021f6f3696f496d4fd890f28fc31735d8f850aa1184ed7bf59c9
SHA512

668b42f6f187232bdccf65714904d5e0e64ac792d7264262dc50fe4d5e42149b3b433a5020c0c2460c8ee4e4df4b33122545319c352ceee1577be09cf3b4530e
SSDEEP

384:jx+mssvoys0HC4bKgOA1lZJXk0oHA/lpk7TcADrKL1VR3Im:jjs+aoCPbA1rJXuH+2EADrcd3

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  087A3B.jar
- Size
  
  275KB
- MD5
  
  37d9c9c214040d54e8d7219b851ca3f2
- SHA1
  
  ea8f7ea6f0e3dd53d06c8fc4b7a956ec0642051f
- SHA256
  
  087a3b87252a021f6f3696f496d4fd890f28fc31735d8f850aa1184ed7bf59c9
- SHA512
  
  668b42f6f187232bdccf65714904d5e0e64ac792d7264262dc50fe4d5e42149b3b433a5020c0c2460c8ee4e4df4b33122545319c352ceee1577be09cf3b4530e
- SSDEEP
  
  384:jx+mssvoys0HC4bKgOA1lZJXk0oHA/lpk7TcADrKL1VR3Im:jjs+aoCPbA1rJXuH+2EADrcd3
Score

7^/10

discovery
- Drops startup file
- Modifies file permissions
  discovery
- Enumerates processes with tasklist
  discovery
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

File and Directory Permissions Modification

Credential Access

Discovery

Process Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1