Overview

overview

10

Static

static

10

HELLO.jar

windows10-2004-x64

7

HELLO.jar

windows11-21h2-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    HELLO.jar

  • Size

    2.3MB

  • Sample

    240625-qjx1psvenm

  • MD5

    3950c0d6bd731b2039ec1c7b33c76f52

  • SHA1

    52452cc54408b66e300be5a1141fb7c2e8cc5246

  • SHA256

    2d68b7c3e84a17714197334296201071e31487281dc119c7c1aecb32ec3ffda0

  • SHA512

    1e6c68dc8d43c46abfc7fb5fd861d19a9ce6c80267eb072f0fece3001c3f654cb496413d73d48c5f6da8c20fd557e0873d5b1cdc731bb609bba5c20f06ed66a2

  • SSDEEP

    49152:fGQma9w588m2GuzpK4JeT3gOtPWD0d0+aKWnGPLsFHRFZX:fXmb88QcpK4JeHJ8/nGPmHRz

Score
10/10
adwinddiscoverypersistence

Malware Config

Targets

    • Target

      HELLO.jar

    • Size

      2.3MB

    • MD5

      3950c0d6bd731b2039ec1c7b33c76f52

    • SHA1

      52452cc54408b66e300be5a1141fb7c2e8cc5246

    • SHA256

      2d68b7c3e84a17714197334296201071e31487281dc119c7c1aecb32ec3ffda0

    • SHA512

      1e6c68dc8d43c46abfc7fb5fd861d19a9ce6c80267eb072f0fece3001c3f654cb496413d73d48c5f6da8c20fd557e0873d5b1cdc731bb609bba5c20f06ed66a2

    • SSDEEP

      49152:fGQma9w588m2GuzpK4JeT3gOtPWD0d0+aKWnGPLsFHRFZX:fXmb88QcpK4JeHJ8/nGPmHRz

    Score
    7/10
    discoverypersistence
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Privilege Escalation

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Defense Evasion

File and Directory Permissions Modification

1
T1222

Modify Registry

1
T1112

Hide Artifacts

1
T1564

Hidden Files and Directories

1
T1564.001

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks