General

  • Target

    Image_00766433873_JPEG.jar

  • Size

    69KB

  • Sample

    201022-vf56rgrbfs

  • MD5

    38af657b78fbe7972d6056129a9ff437

  • SHA1

    af3f1cdddfc251308ec0c627a95e088962a40c05

  • SHA256

    bfe596c9e91ff1f739cf53faf5996504addb964a7cbfd3823040f9f2acf36185

  • SHA512

    632638d1646be5e5a6cbf85d564bb52820706e25d673a3548b62b65181c6af4be0df39adf2fb8e97d0238c274dc47ec0246f6da36142314197c1a1108e5e0846

Score
10/10

Malware Config

Targets

    • Target

      Image_00766433873_JPEG.jar

    • Size

      69KB

    • MD5

      38af657b78fbe7972d6056129a9ff437

    • SHA1

      af3f1cdddfc251308ec0c627a95e088962a40c05

    • SHA256

      bfe596c9e91ff1f739cf53faf5996504addb964a7cbfd3823040f9f2acf36185

    • SHA512

      632638d1646be5e5a6cbf85d564bb52820706e25d673a3548b62b65181c6af4be0df39adf2fb8e97d0238c274dc47ec0246f6da36142314197c1a1108e5e0846

    Score
    10/10
    • QNodeService

      Trojan/stealer written in NodeJS and spread via Java downloader.

    • Executes dropped EXE

    • JavaScript code in executable

MITRE ATT&CK Matrix

Tasks