General

  • Target

    WaybillDoc_6703378146.jar

  • Size

    153KB

  • Sample

    201012-r34k8sa6e6

  • MD5

    f2a2aa89b2e53c66ed1ddb06e7b23a8a

  • SHA1

    cc745165672cf0b8994788127217ad29ef12e390

  • SHA256

    cd6fcb31569c4b4a7e75022771964925236a8e3a185b3654d832bc75d50e4206

  • SHA512

    9c85f4242bc03bcabd2a7594be5faabd9cb200f3802fd7a09379ca51fc2ffe91363454016a444e5f9a0dc2a25e577b73d0b88908b092f0556cbee7bb386136f5

Score
10/10

Malware Config

Targets

    • Target

      WaybillDoc_6703378146.jar

    • Size

      153KB

    • MD5

      f2a2aa89b2e53c66ed1ddb06e7b23a8a

    • SHA1

      cc745165672cf0b8994788127217ad29ef12e390

    • SHA256

      cd6fcb31569c4b4a7e75022771964925236a8e3a185b3654d832bc75d50e4206

    • SHA512

      9c85f4242bc03bcabd2a7594be5faabd9cb200f3802fd7a09379ca51fc2ffe91363454016a444e5f9a0dc2a25e577b73d0b88908b092f0556cbee7bb386136f5

    Score
    10/10
    • QNodeService

      Trojan/stealer written in NodeJS and spread via Java downloader.

    • Executes dropped EXE

    • JavaScript code in executable

MITRE ATT&CK Matrix

Tasks