eb76c8ea9c1857530e537b318eeac0781f7bbc68ad9e0152bcb2db5a8af71d97 | Triage

Sharing

General

Target

fattura.jar
Size

222KB
Sample

200629-2j614bdbax
MD5

9f4c61b914d5174226a6591f9e9a2a48
SHA1

558fa0ea8e2ea1c3c6b618789a88081eebeeab4c
SHA256

eb76c8ea9c1857530e537b318eeac0781f7bbc68ad9e0152bcb2db5a8af71d97
SHA512

f433da3b79fdd9f135094fc546988f81f535793a01b3b73803d7ed5f9b6e6eaacc685ee50e73ff7e3c066deeab7208ff64b55e7a5bc704966f8820b6a8dd81fc

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  fattura.jar
- Size
  
  222KB
- MD5
  
  9f4c61b914d5174226a6591f9e9a2a48
- SHA1
  
  558fa0ea8e2ea1c3c6b618789a88081eebeeab4c
- SHA256
  
  eb76c8ea9c1857530e537b318eeac0781f7bbc68ad9e0152bcb2db5a8af71d97
- SHA512
  
  f433da3b79fdd9f135094fc546988f81f535793a01b3b73803d7ed5f9b6e6eaacc685ee50e73ff7e3c066deeab7208ff64b55e7a5bc704966f8820b6a8dd81fc
Score

8^/10

persistence
- Blacklisted process makes network request
- Drops startup file
- Adds Run entry to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2