Overview

overview

10

Static

static

Invoice_1606.jar

windows7_x64

1

Invoice_1606.jar

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Invoice_1606.jar

  • Size

    72KB

  • Sample

    201023-pjnj22ly4n

  • MD5

    3884f884757f84749a7ff48d4deca32b

  • SHA1

    22e456c713c3b64a2f92b9418cab1318ab70d48f

  • SHA256

    100f5ac30dd70d3844e582642a221d93555a6a5d7f081bea8fa4ad572164d17b

  • SHA512

    4aeaeef6f99f215f51d75ed1a0e600cdfcab5b7b28f800c9db2f6dc9ac8a00bd87b135d10571b3843ef64af409d751d55428ea1341fd78f7c46cefc743820b0e

Score
10/10
qnodeservicetrojan

Malware Config

Targets

    • Target

      Invoice_1606.jar

    • Size

      72KB

    • MD5

      3884f884757f84749a7ff48d4deca32b

    • SHA1

      22e456c713c3b64a2f92b9418cab1318ab70d48f

    • SHA256

      100f5ac30dd70d3844e582642a221d93555a6a5d7f081bea8fa4ad572164d17b

    • SHA512

      4aeaeef6f99f215f51d75ed1a0e600cdfcab5b7b28f800c9db2f6dc9ac8a00bd87b135d10571b3843ef64af409d751d55428ea1341fd78f7c46cefc743820b0e

    Score
    10/10
    trojanqnodeservice

    • QNodeService

      Trojan/stealer written in NodeJS and spread via Java downloader.

      trojanqnodeservice

    • Executes dropped EXE

    • JavaScript code in executable

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks