General

  • Target

    Sample_5f73b570cb0f41001b620aad.bin

  • Size

    126KB

  • Sample

    201014-mewsvglgws

  • MD5

    abca242f11e901d0f85538e2f55b8321

  • SHA1

    9be7f118e5c9b01d6fefb08c4959422358bbec24

  • SHA256

    20d80f734edc92212a92a707186e22a60577c93e8bf421841b43d308f492734b

  • SHA512

    42692373ea1237ba1d026700604ccdb755b2ad9ee17734e5ba8ab9c8c67f5643c207df939a9881319979e3c7437084583cb58c6f5c64ad67793e1051e8ff43e9

Score
10/10

Malware Config

Targets

    • Target

      Sample_5f73b570cb0f41001b620aad.bin

    • Size

      126KB

    • MD5

      abca242f11e901d0f85538e2f55b8321

    • SHA1

      9be7f118e5c9b01d6fefb08c4959422358bbec24

    • SHA256

      20d80f734edc92212a92a707186e22a60577c93e8bf421841b43d308f492734b

    • SHA512

      42692373ea1237ba1d026700604ccdb755b2ad9ee17734e5ba8ab9c8c67f5643c207df939a9881319979e3c7437084583cb58c6f5c64ad67793e1051e8ff43e9

    Score
    10/10
    • QNodeService

      Trojan/stealer written in NodeJS and spread via Java downloader.

    • Executes dropped EXE

    • JavaScript code in executable

MITRE ATT&CK Matrix

Tasks