General

  • Target

    Way Bill #0015102020.jar

  • Size

    262KB

  • Sample

    201016-5xsrjnbtya

  • MD5

    d3760c810db5a1d82af0daf44d54a766

  • SHA1

    6b7d48c11e5d8add4e7bd2c59aa00ddd5cc7d7b6

  • SHA256

    41786ef43f218b378cc533e50490815cdcac23b6cdb8375b9282abed195d7720

  • SHA512

    73dcc15b488497031f8ca9fb6f6a8c73bc4c3d024feb1a10836f42f2b0224668e4a302bac80f4102e0e95e6df976bbf214330a22f07cd0bac4d30a0455aaf8b3

Score
10/10

Malware Config

Targets

    • Target

      Way Bill #0015102020.jar

    • Size

      262KB

    • MD5

      d3760c810db5a1d82af0daf44d54a766

    • SHA1

      6b7d48c11e5d8add4e7bd2c59aa00ddd5cc7d7b6

    • SHA256

      41786ef43f218b378cc533e50490815cdcac23b6cdb8375b9282abed195d7720

    • SHA512

      73dcc15b488497031f8ca9fb6f6a8c73bc4c3d024feb1a10836f42f2b0224668e4a302bac80f4102e0e95e6df976bbf214330a22f07cd0bac4d30a0455aaf8b3

    Score
    10/10
    • QNodeService

      Trojan/stealer written in NodeJS and spread via Java downloader.

    • Executes dropped EXE

    • JavaScript code in executable

MITRE ATT&CK Matrix

Tasks