General

  • Target

    Shipping documents.jar

  • Size

    72KB

  • Sample

    201023-mnf46pkb9a

  • MD5

    0e274414e008ee3e555e296593012828

  • SHA1

    98e64ec5869c19641dac93541e1355030fe2a68f

  • SHA256

    59b1bfedcb58180036edfa10e515f72204d88fbcf456059907b93043b3f6ae40

  • SHA512

    f430701dcaf40dda38f84645920c2ea073c15ed4268144b1fc310b33b69f568de24f17d7337c8af11c0916d12db76501320b0bbf767484c8b65ac02955cfe96f

Score
10/10

Malware Config

Targets

    • Target

      Shipping documents.jar

    • Size

      72KB

    • MD5

      0e274414e008ee3e555e296593012828

    • SHA1

      98e64ec5869c19641dac93541e1355030fe2a68f

    • SHA256

      59b1bfedcb58180036edfa10e515f72204d88fbcf456059907b93043b3f6ae40

    • SHA512

      f430701dcaf40dda38f84645920c2ea073c15ed4268144b1fc310b33b69f568de24f17d7337c8af11c0916d12db76501320b0bbf767484c8b65ac02955cfe96f

    Score
    10/10
    • QNodeService

      Trojan/stealer written in NodeJS and spread via Java downloader.

    • Executes dropped EXE

    • JavaScript code in executable

MITRE ATT&CK Matrix

Tasks