{
	"id": "da97242b-5839-4d7a-9fd0-46e6ad3686e4",
	"created_at": "2026-04-06T00:06:57.008514Z",
	"updated_at": "2026-04-10T13:11:38.641834Z",
	"deleted_at": null,
	"sha1_hash": "f7846d9fb1722b5003103c4250930743a32243e4",
	"title": "Aug 2012 W32.Crisis and OSX.Crisis - JAR file Samples - APT",
	"llm_title": "",
	"authors": "",
	"file_creation_date": "0001-01-01T00:00:00Z",
	"file_modification_date": "0001-01-01T00:00:00Z",
	"file_size": 46395,
	"plain_text": "Aug 2012 W32.Crisis and OSX.Crisis - JAR file Samples - APT\r\nArchived: 2026-04-05 20:30:51 UTC\r\nSHA256: 53cd1d6a1cc64d4e8275a22216492b76db186cfb38cec6e7b3cfb7a87ccb3524\r\nSHA1: 465ca6b7e883a7d145ddf6d59e3ef1c0eec279e5\r\nMD5: ba170664095b53d97690b5be208927e2\r\nFile size: 1.1 MB ( 1124562 bytes )\r\nFile name: ba170664095b53d97690b5be208927e2\r\nFile type: JAR\r\nTags: jar\r\nDetection ratio: 36 / 42\r\nAnalysis date: 2012-11-23 15:50:50 UTC ( 1 week, 6 days ago ) \r\nAdditional information\r\nAntivirus Result Update\r\nAgnitum Trojan.DR.Injector!VcQiekruiLk 20121123\r\nAntiVir Java/Dldr.Trea.CN.1 20121123\r\nAntiy-AVL Trojan/Java.Agent 20121122\r\nAvast Java:Dropper-F [Trj] 20121123\r\nAVG Dropper.Generic6.AOLY 20121123\r\nBitDefender Gen:Variant.Kazy.81085 20121123\r\nCAT-QuickHeal TrojanDropper.Injector.fleh 20121122\r\nClamAV WIN.Trojan.Crisis 20121123\r\nCommtouch - 20121123\r\nComodo UnclassifiedMalware 20121123\r\nDrWeb Java.Dropper.15 20121123\r\nEmsisoft Gen:Variant.Kazy.81085 (B) 20121123\r\nhttp://contagiodump.blogspot.com/2012/12/aug-2012-w32crisis-and-osxcrisis-jar.html\r\nPage 1 of 7\n\neSafe - 20121121\r\nESET-NOD32 Java/Agent.EU 20121123\r\nF-Prot - 20121123\r\nF-Secure Trojan-Dropper:Java/SelfSign.A 20121123\r\nFortinet Java/Agent.N!tr 20121123\r\nGData Gen:Variant.Kazy.81085 20121123\r\nIkarus Trojan-Dropper.Java.Agent 20121123\r\nJiangmin TrojanDropper.Java.n 20121123\r\nK7AntiVirus - 20121122\r\nKaspersky Trojan-Dropper.Java.Agent.n 20121123\r\nKingsoft VIRUS_UNKNOWN 20121119\r\nMcAfee Morcut.a 20121123\r\nMcAfee-GW-Edition Morcut.a 20121123\r\nMicrosoft Trojan:Java/Spoilder.A 20121123\r\nMicroWorld-eScan - 20121123\r\nNorman Spoilder.A 20121123\r\nnProtect MAC.OSX.Trojan.Morcut.A 20121123\r\nPanda Generic Trojan 20121123\r\nPCTools Malware.OSX-Crisis 20121123\r\nRising Trojan.Win32.Generic.12F274CC 20121123\r\nSophos Troj/JVDrop-A 20121123\r\nSUPERAntiSpyware - 20121123\r\nSymantec Trojan.Maljava 20121122\r\nTheHacker Trojan/Dropper.Injector.fleh 20121123\r\nTotalDefense Java/Agent.CDT 20121122\r\nTrendMicro JAVA_MORCUT.A 20121123\r\nhttp://contagiodump.blogspot.com/2012/12/aug-2012-w32crisis-and-osxcrisis-jar.html\r\nPage 2 of 7\n\nTrendMicro-HouseCall TROJ_GEN.F47V0724 20121123\r\nVBA32 TrojanPSW.Agent.acnn 20121122\r\nVIPRE Trojan.Win32.Generic!BT 20121123\r\nViRobot Trojan.S.OSX.Crisis.1124562\r\nSHA256: 53cd1d6a1cc64d4e8275a22216492b76db186cfb38cec6e7b3cfb7a87ccb3524\r\nSHA1: 465ca6b7e883a7d145ddf6d59e3ef1c0eec279e5\r\nMD5: ba170664095b53d97690b5be208927e2\r\nFile size: 1.1 MB ( 1124562 bytes )\r\nFile name: ba170664095b53d97690b5be208927e2\r\nFile type: JAR\r\nTags: jar\r\nDetection ratio: 36 / 42\r\nAnalysis date:  2012-11-23 15:50:50 UTC ( 1 week, 6 days ago ) \r\nAdditional information\r\nAntivirus Result Update\r\nAgnitum Trojan.DR.Injector!VcQiekruiLk 20121123\r\nAntiVir Java/Dldr.Trea.CN.1 20121123\r\nAntiy-AVL Trojan/Java.Agent 20121122\r\nAvast Java:Dropper-F [Trj] 20121123\r\nAVG Dropper.Generic6.AOLY 20121123\r\nBitDefender Gen:Variant.Kazy.81085 20121123\r\nCAT-QuickHeal TrojanDropper.Injector.fleh 20121122\r\nClamAV WIN.Trojan.Crisis 20121123\r\nCommtouch - 20121123\r\nComodo UnclassifiedMalware 20121123\r\nDrWeb Java.Dropper.15 20121123\r\nhttp://contagiodump.blogspot.com/2012/12/aug-2012-w32crisis-and-osxcrisis-jar.html\r\nPage 3 of 7\n\nEmsisoft Gen:Variant.Kazy.81085 (B) 20121123\r\neSafe - 20121121\r\nESET-NOD32 Java/Agent.EU 20121123\r\nF-Prot - 20121123\r\nF-Secure Trojan-Dropper:Java/SelfSign.A 20121123\r\nFortinet Java/Agent.N!tr 20121123\r\nGData Gen:Variant.Kazy.81085 20121123\r\nIkarus Trojan-Dropper.Java.Agent 20121123\r\nJiangmin TrojanDropper.Java.n 20121123\r\nK7AntiVirus - 20121122\r\nKaspersky Trojan-Dropper.Java.Agent.n 20121123\r\nKingsoft VIRUS_UNKNOWN 20121119\r\nMcAfee Morcut.a 20121123\r\nMcAfee-GW-Edition Morcut.a 20121123\r\nMicrosoft Trojan:Java/Spoilder.A 20121123\r\nMicroWorld-eScan - 20121123\r\nNorman Spoilder.A 20121123\r\nnProtect MAC.OSX.Trojan.Morcut.A 20121123\r\nPanda Generic Trojan 20121123\r\nPCTools Malware.OSX-Crisis 20121123\r\nRising Trojan.Win32.Generic.12F274CC 20121123\r\nSophos Troj/JVDrop-A 20121123\r\nSUPERAntiSpyware - 20121123\r\nSymantec Trojan.Maljava 20121122\r\nTheHacker Trojan/Dropper.Injector.fleh 20121123\r\nTotalDefense Java/Agent.CDT 20121122\r\nhttp://contagiodump.blogspot.com/2012/12/aug-2012-w32crisis-and-osxcrisis-jar.html\r\nPage 4 of 7\n\nTrendMicro JAVA_MORCUT.A 20121123\r\nTrendMicro-HouseCall TROJ_GEN.F47V0724 20121123\r\nVBA32 TrojanPSW.Agent.acnn 20121122\r\nVIPRE Trojan.Win32.Generic!BT 20121123\r\nViRobot Trojan.S.OSX.Crisis.1124562\r\nSHA256: c93074c0e60d0f9d33056fd6439205610857aa3cf54c1c20a48333b4367268ca\r\nSHA1: 7fa7c4af13ad1bcf12b180a5a9cf24613485608c\r\nMD5: ae8d4770ef02373d7680f160e01e8668\r\nFile size: 1019.0 KB ( 1043456 bytes )\r\nFile name: ae8d4770ef02373d7680f160e01e8668\r\nFile type: Win32 EXE\r\nTags: peexe\r\nDetection ratio: 31 / 34\r\nAnalysis date: 2012-11-23 15:50:23 UTC ( 1 week, 6 days ago ) \r\nAdditional information\r\nBehavioural information\r\nAntivirus Result Update\r\nAgnitum Trojan.DR.Injector!VcQiekruiLk 20121123\r\nAntiVir TR/Drop.Bakefoe.A 20121123\r\nAntiy-AVL Trojan/Win32.Injector.gen 20121122\r\nAvast Win32:Crisis 20121123\r\nBitDefender Gen:Variant.Kazy.81085 20121123\r\nCAT-QuickHeal TrojanDropper.Injector.fleh 20121122\r\nClamAV WIN.Trojan.Crisis 20121123\r\nCommtouch - 20121123\r\nComodo TrojWare.Win32.Boychi.a 20121123\r\nhttp://contagiodump.blogspot.com/2012/12/aug-2012-w32crisis-and-osxcrisis-jar.html\r\nPage 5 of 7\n\nEmsisoft Worm.Win32.Boychi.AMN (A) 20121123\r\nESET-NOD32 Win32/Boychi.A.Gen 20121123\r\nF-Prot - 20121123\r\nFortinet W32/Swizzor.D!tr 20121123\r\nGData Gen:Variant.Kazy.81085 20121123\r\nIkarus Worm.Win32.Boychi 20121123\r\nJiangmin TrojanDropper.Injector.aixs 20121123\r\nK7AntiVirus Trojan 20121122\r\nKaspersky Trojan-Dropper.Win32.Injector.fleh 20121123\r\nKingsoft Win32.Troj.Injector.(kcloud) 20121119\r\nMcAfee Morcut.a 20121123\r\nMcAfee-GW-Edition Morcut.a 20121123\r\nMicrosoft Worm:Win32/Boychi.A 20121123\r\nMicroWorld-eScan Gen:Variant.Kazy.81085 20121123\r\nNorman Boychi.A 20121123\r\nnProtect Trojan/W32.Agent.1043456.O 20121123\r\nPanda Suspicious file 20121123\r\nPCTools Malware.Crisis 20121123\r\nSophos W32/Crisis-A 20121123\r\nSUPERAntiSpyware - 20121123\r\nTheHacker Trojan/Dropper.Injector.fleh 20121123\r\nTotalDefense Win32/Boychi.F 20121122\r\nVBA32 TrojanPSW.Agent.acnn 20121122\r\nVIPRE Trojan.Win32.Generic!BT 20121123\r\nViRobot Dropper.S.Crisis.1043456 20121123\r\nhttp://contagiodump.blogspot.com/2012/12/aug-2012-w32crisis-and-osxcrisis-jar.html\r\nPage 6 of 7\n\nSource: http://contagiodump.blogspot.com/2012/12/aug-2012-w32crisis-and-osxcrisis-jar.html\r\nhttp://contagiodump.blogspot.com/2012/12/aug-2012-w32crisis-and-osxcrisis-jar.html\r\nPage 7 of 7",
	"extraction_quality": 1,
	"language": "EN",
	"sources": [
		"Malpedia"
	],
	"origins": [
		"web"
	],
	"references": [
		"http://contagiodump.blogspot.com/2012/12/aug-2012-w32crisis-and-osxcrisis-jar.html"
	],
	"report_names": [
		"aug-2012-w32crisis-and-osxcrisis-jar.html"
	],
	"threat_actors": [],
	"ts_created_at": 1775434017,
	"ts_updated_at": 1775826698,
	"ts_creation_date": 0,
	"ts_modification_date": 0,
	"files": {
		"pdf": "https://archive.orkl.eu/f7846d9fb1722b5003103c4250930743a32243e4.pdf",
		"text": "https://archive.orkl.eu/f7846d9fb1722b5003103c4250930743a32243e4.txt",
		"img": "https://archive.orkl.eu/f7846d9fb1722b5003103c4250930743a32243e4.jpg"
	}
}