General

  • Target

    INVOICE 0106.jar

  • Size

    67KB

  • Sample

    201022-yv8xlkrk3s

  • MD5

    eb45fee306ba42379381f385e1d13017

  • SHA1

    253620166cdb27495464f9c03a9184d8cfe19dd3

  • SHA256

    0806f7d22f9bfbe523f1dd102087fd0dc0dd8fdaad397c6f3986b9b30e1ecd9d

  • SHA512

    e30a4716f0050df82d7bf5143c6f982421ffe424c6b3ec8282879c06522976c07e4048ddbddb140aee13cf8166703079be4040378827f00be996de617a8380ae

Score
10/10

Malware Config

Targets

    • Target

      INVOICE 0106.jar

    • Size

      67KB

    • MD5

      eb45fee306ba42379381f385e1d13017

    • SHA1

      253620166cdb27495464f9c03a9184d8cfe19dd3

    • SHA256

      0806f7d22f9bfbe523f1dd102087fd0dc0dd8fdaad397c6f3986b9b30e1ecd9d

    • SHA512

      e30a4716f0050df82d7bf5143c6f982421ffe424c6b3ec8282879c06522976c07e4048ddbddb140aee13cf8166703079be4040378827f00be996de617a8380ae

    Score
    10/10
    • QNodeService

      Trojan/stealer written in NodeJS and spread via Java downloader.

    • Executes dropped EXE

    • JavaScript code in executable

MITRE ATT&CK Matrix

Tasks