ba18ff142bae31457031ca49e772b10792ad3a5bdead90cb2c1d37e2a6c2fd59

Submit
Reports

Overview

overview

Static

static

Γενικ...19.exe

windows7-x64

Γενικ...19.exe

windows10-2004-x64

Covid 19 I...ps.exe

windows7-x64

Covid 19 I...ps.exe

windows10-2004-x64

Original.document.exe

windows7-x64

Original.document.exe

windows10-2004-x64

COVID-19 W... V.exe

windows7-x64

COVID-19 W... V.exe

windows10-2004-x64

Malware-Fe...ae.jar

windows7-x64

Malware-Fe...ae.jar

windows10-2004-x64

Malware-Fe...7f.exe

windows7-x64

Malware-Fe...7f.exe

windows10-2004-x64

Malware-Fe...a5.exe

windows7-x64

Malware-Fe...a5.exe

windows10-2004-x64

Malware-Fe...02.exe

windows7-x64

Malware-Fe...02.exe

windows10-2004-x64

Malware-Fe...3a.exe

windows7-x64

Malware-Fe...3a.exe

windows10-2004-x64

Malware-Fe...ee.exe

windows7-x64

Malware-Fe...ee.exe

windows10-2004-x64

AWARENESS ...df.exe

windows7-x64

AWARENESS ...df.exe

windows10-2004-x64

Malware-Fe...987494

ubuntu-24.04-amd64

Malware-Fe...237d18

ubuntu-22.04-amd64

Malware-Fe...00.dll

windows7-x64

Malware-Fe...00.dll

windows10-2004-x64

Malware-Fe...35.dll

windows7-x64

Malware-Fe...35.dll

windows10-2004-x64

Malware-Fe...29.dll

windows7-x64

Malware-Fe...29.dll

windows10-2004-x64

Malware-Fe...2b86da

ubuntu-18.04-amd64

Malware-Fe...2b86da

debian-9-armhf

Analysis

max time kernel
5s
max time network
64s
platform
windows7_x64
resource
win7-20241010-en
resource tags

arch:x64arch:x86image:win7-20241010-enlocale:en-usos:windows7-x64system
submitted
17-02-2025 17:59

Sharing

Copy URL

Twitter E-mail

Static task

static1

42 signatures

Behavioral task

behavioral1

Sample

Γενική ειδοποίηση χρονοδιαγράμματος εργασίας στο COVID-19.exe

Resource

win7-20241010-en

agenttesla collection discovery keylogger spyware stealer trojan upx

windows7-x64

15 signatures

150 seconds

Behavioral task

behavioral2

Sample

Γενική ειδοποίηση χρονοδιαγράμματος εργασίας στο COVID-19.exe

Resource

win10v2004-20250217-en

agenttesla collection discovery keylogger spyware stealer trojan upx

windows10-2004-x64

15 signatures

150 seconds

Behavioral task

behavioral3

Sample

Covid 19 Immunity Tips.exe

Resource

win7-20240903-en

collection credential_access discovery spyware stealer

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral4

Sample

Covid 19 Immunity Tips.exe

Resource

win10v2004-20250217-en

collection credential_access discovery spyware stealer

windows10-2004-x64

11 signatures

150 seconds

Behavioral task

behavioral5

Sample

Original.document.exe

Resource

win7-20241023-en

agenttesla collection credential_access discovery keylogger spyware stealer trojan

windows7-x64

20 signatures

150 seconds

Behavioral task

behavioral6

Sample

Original.document.exe

Resource

win10v2004-20250217-en

agenttesla collection credential_access discovery keylogger spyware stealer trojan

windows10-2004-x64

20 signatures

150 seconds

Behavioral task

behavioral7

Sample

COVID-19 WHO RECOMENDED V.exe

Resource

win7-20240903-en

agenttesla collection discovery keylogger persistence spyware stealer trojan

windows7-x64

17 signatures

150 seconds

Behavioral task

behavioral8

Sample

COVID-19 WHO RECOMENDED V.exe

Resource

win10v2004-20250217-en

agenttesla collection discovery keylogger persistence spyware stealer trojan

windows10-2004-x64

18 signatures

150 seconds

Behavioral task

behavioral9

Sample

Malware-Feed-master/2020.06.22_FBI-FLASH-MI-000124-MW/5b0ba8d58a64630cb5fcb80e72520bd2ef6f322003fa2588d4d594620e6685ae.jar

Resource

win7-20241010-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

Malware-Feed-master/2020.06.22_FBI-FLASH-MI-000124-MW/5b0ba8d58a64630cb5fcb80e72520bd2ef6f322003fa2588d4d594620e6685ae.jar

Resource

win10v2004-20250217-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

Malware-Feed-master/2020.06.22_FBI-FLASH-MI-000124-MW/7b98cd3800dede6537cf78e7b61eeeda71d251dc97c70cb7c2135c6aa310ab7f.exe

Resource

win7-20240903-en

agenttesla collection credential_access discovery keylogger spyware stealer trojan

windows7-x64

20 signatures

150 seconds

Behavioral task

behavioral12

Sample

Malware-Feed-master/2020.06.22_FBI-FLASH-MI-000124-MW/7b98cd3800dede6537cf78e7b61eeeda71d251dc97c70cb7c2135c6aa310ab7f.exe

Resource

win10v2004-20250217-en

agenttesla collection credential_access discovery keylogger spyware stealer trojan

windows10-2004-x64

20 signatures

150 seconds

Behavioral task

behavioral13

Sample

Malware-Feed-master/2020.06.22_FBI-FLASH-MI-000124-MW/d150feb631d6e9050b7fb76db57504e6dcc2715fe03e45db095f50d56a9495a5.exe

Resource

win7-20240903-en

agenttesla collection discovery keylogger persistence spyware stealer trojan

windows7-x64

17 signatures

150 seconds

Behavioral task

behavioral14

Sample

Malware-Feed-master/2020.06.22_FBI-FLASH-MI-000124-MW/d150feb631d6e9050b7fb76db57504e6dcc2715fe03e45db095f50d56a9495a5.exe

Resource

win10v2004-20250217-en

agenttesla collection discovery keylogger persistence spyware stealer trojan

windows10-2004-x64

18 signatures

150 seconds

Behavioral task

behavioral15

Sample

Malware-Feed-master/2020.06.22_FBI-FLASH-MI-000124-MW/da26ba1e13ce4702bd5154789ce1a699ba206c12021d9823380febd795f5b002.exe

Resource

win7-20241010-en

lokibot collection discovery spyware stealer trojan

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral16

Sample

Malware-Feed-master/2020.06.22_FBI-FLASH-MI-000124-MW/da26ba1e13ce4702bd5154789ce1a699ba206c12021d9823380febd795f5b002.exe

Resource

win10v2004-20250217-en

lokibot collection discovery spyware stealer trojan

windows10-2004-x64

12 signatures

150 seconds

Behavioral task

behavioral17

Sample

Malware-Feed-master/2020.06.22_FBI-FLASH-MI-000124-MW/e4e5c3a6c15beff4e17117075e2c0bd65f176d81e6885134d2b4d97c20d4773a.exe

Resource

win7-20241023-en

collection credential_access discovery spyware stealer

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral18

Sample

Malware-Feed-master/2020.06.22_FBI-FLASH-MI-000124-MW/e4e5c3a6c15beff4e17117075e2c0bd65f176d81e6885134d2b4d97c20d4773a.exe

Resource

win10v2004-20250217-en

collection credential_access discovery spyware stealer

windows10-2004-x64

11 signatures

150 seconds

Behavioral task

behavioral19

Sample

Malware-Feed-master/2020.06.22_FBI-FLASH-MI-000124-MW/f681c1f8c12956a20c27beb9be1112374fefc7651884d7dd92010b40db1e7bee.exe

Resource

win7-20241010-en

discovery

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral20

Sample

Malware-Feed-master/2020.06.22_FBI-FLASH-MI-000124-MW/f681c1f8c12956a20c27beb9be1112374fefc7651884d7dd92010b40db1e7bee.exe

Resource

win10v2004-20250217-en

discovery

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral21

Sample

AWARENESS NOTICE ON CORONAVIRUS COVID-19 DOCUMENT_pdf.exe

Resource

win7-20241010-en

lokibot collection discovery spyware stealer trojan

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral22

Sample

AWARENESS NOTICE ON CORONAVIRUS COVID-19 DOCUMENT_pdf.exe

Resource

win10v2004-20250217-en

lokibot collection discovery spyware stealer trojan

windows10-2004-x64

12 signatures

150 seconds

Behavioral task

behavioral23

Sample

Malware-Feed-master/2020.07.16_CISA-WELLMAIL/0c5ad1e8fe43583e279201cdb1046aea742bae59685e6da24e963a41df987494

Resource

ubuntu2404-amd64-20240523-en

ubuntu-24.04-amd64

0 signatures

150 seconds

Behavioral task

behavioral24

Sample

Malware-Feed-master/2020.07.16_CISA-WELLMAIL/83014ab5b3f63b0253cdab6d715f5988ac9014570fa4ab2b267c7cf9ba237d18

Resource

ubuntu2204-amd64-20240611-en

discovery

ubuntu-22.04-amd64

1 signatures

150 seconds

Behavioral task

behavioral25

Sample

Malware-Feed-master/2020.07.23_FBI-FLASH-AC-000129-TT/1d973d05dee26f74ae352325da741928af4327f7a6be27cdec085a31fbea8100.dll

Resource

win7-20240903-en

discovery persistence

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral26

Sample

Malware-Feed-master/2020.07.23_FBI-FLASH-AC-000129-TT/1d973d05dee26f74ae352325da741928af4327f7a6be27cdec085a31fbea8100.dll

Resource

win10v2004-20250217-en

discovery persistence

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral27

Sample

Malware-Feed-master/2020.07.23_FBI-FLASH-AC-000129-TT/37aa87d3408dc3e211d63a3bb38c726787c47c06a19e77f6a14861a91c2dcb35.dll

Resource

win7-20240903-en

discovery persistence

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral28

Sample

Malware-Feed-master/2020.07.23_FBI-FLASH-AC-000129-TT/37aa87d3408dc3e211d63a3bb38c726787c47c06a19e77f6a14861a91c2dcb35.dll

Resource

win10v2004-20250217-en

discovery persistence

windows10-2004-x64

5 signatures

150 seconds

Behavioral task

behavioral29

Sample

Malware-Feed-master/2020.07.23_FBI-FLASH-AC-000129-TT/a1aa0684813cfe9d7ed5c491c8ab132e5583b4fd02187fdae8aa4d934d933f29.dll

Resource

win7-20240903-en

persistence

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral30

Sample

Malware-Feed-master/2020.07.23_FBI-FLASH-AC-000129-TT/a1aa0684813cfe9d7ed5c491c8ab132e5583b4fd02187fdae8aa4d934d933f29.dll

Resource

win10v2004-20250217-en

persistence

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral31

Sample

Malware-Feed-master/2020.07.27_CISA-Legacy_Malware_Targeting_QNAP_NAS/09ab3031796bea1b8b79fcfd2b86da

Resource

ubuntu1804-amd64-20240729-en

discovery

ubuntu-18.04-amd64

2 signatures

150 seconds

Behavioral task

behavioral32

Sample

Malware-Feed-master/2020.07.27_CISA-Legacy_Malware_Targeting_QNAP_NAS/09ab3031796bea1b8b79fcfd2b86da

Resource

debian9-armhf-20240611-en

antivm discovery

debian-9-armhf

3 signatures

150 seconds

Report Analysis Logs

General

Target

Malware-Feed-master/2020.06.22_FBI-FLASH-MI-000124-MW/5b0ba8d58a64630cb5fcb80e72520bd2ef6f322003fa2588d4d594620e6685ae.jar
Size

392KB
MD5

e8973e617a743a5597b63ce268986761
SHA1

a45f057cbf44a70d010ea02e5417e06314b60a0a
SHA256

5b0ba8d58a64630cb5fcb80e72520bd2ef6f322003fa2588d4d594620e6685ae
SHA512

8d28bfc622ceef532027bf38713c838960e9bb16d1a70b94747340ef44de74055c934f006626d6ee7c40146a84a5ac0616b38f820723e671897294f7647cd3e0
SSDEEP

6144:T6ZBcAMRxFPhXOyCHDC2sl10rhXqJ5xb21lDs4+J1sySCTTy5mw3ZZbZ2P:CcAuT5+bHDC2cmhXqJ5xgmGvCTit/oP

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\java.exe
java -jar C:\Users\Admin\AppData\Local\Temp\Malware-Feed-master\2020.06.22_FBI-FLASH-MI-000124-MW\5b0ba8d58a64630cb5fcb80e72520bd2ef6f322003fa2588d4d594620e6685ae.jar
1⤵
PID:2896

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2896-2-0x0000000002280000-0x00000000024F0000-memory.dmp

Filesize
2.4MB

Download
memory/2896-11-0x0000000001C50000-0x0000000001C51000-memory.dmp

Filesize
4KB

Download
memory/2896-12-0x0000000002280000-0x00000000024F0000-memory.dmp

Filesize
2.4MB

Download