General

  • Target

    IMG_Order1016.jar

  • Size

    204KB

  • Sample

    201017-2asv575bbx

  • MD5

    5879f6b47ee9f8f02f53a1f51abec06d

  • SHA1

    b54b62e1af1568983912f944ef01685cf2edb187

  • SHA256

    fa4a2bfbc569a10517a6f52078cb574bf4038178010b444511c3a57c3ad9132a

  • SHA512

    1e3d52948ec09cb8ca8fff4d9aa5db23ca0a22a7686f3cbda2a57537ec356ba948f33529fd6a513f450da4a508801d8fc43815fa6e8a60f48542da04f47c4bb6

Score
10/10

Malware Config

Targets

    • Target

      IMG_Order1016.jar

    • Size

      204KB

    • MD5

      5879f6b47ee9f8f02f53a1f51abec06d

    • SHA1

      b54b62e1af1568983912f944ef01685cf2edb187

    • SHA256

      fa4a2bfbc569a10517a6f52078cb574bf4038178010b444511c3a57c3ad9132a

    • SHA512

      1e3d52948ec09cb8ca8fff4d9aa5db23ca0a22a7686f3cbda2a57537ec356ba948f33529fd6a513f450da4a508801d8fc43815fa6e8a60f48542da04f47c4bb6

    Score
    10/10
    • QNodeService

      Trojan/stealer written in NodeJS and spread via Java downloader.

    • Executes dropped EXE

    • JavaScript code in executable

MITRE ATT&CK Matrix

Tasks