General

  • Target

    Advise_65800_1020.jar

  • Size

    74KB

  • Sample

    201026-vnp7jrtvrj

  • MD5

    4956848c584407a402db410818282d15

  • SHA1

    15925de14ab6eb4380258aee08338b0f5754edcb

  • SHA256

    0426d4c5a5d65165faf65b129833c0b316c2839c06bc51c7379851d7e879ae93

  • SHA512

    81f029ff447c2b9e7a9bbe5aa7ed7a84fc6cb3adcde3bc8baa5cbce895a613222119c28f3f8be31083c30ceee7185a57790369a73a6f3bbbd55328526d163b1d

Score
10/10

Malware Config

Targets

    • Target

      Advise_65800_1020.jar

    • Size

      74KB

    • MD5

      4956848c584407a402db410818282d15

    • SHA1

      15925de14ab6eb4380258aee08338b0f5754edcb

    • SHA256

      0426d4c5a5d65165faf65b129833c0b316c2839c06bc51c7379851d7e879ae93

    • SHA512

      81f029ff447c2b9e7a9bbe5aa7ed7a84fc6cb3adcde3bc8baa5cbce895a613222119c28f3f8be31083c30ceee7185a57790369a73a6f3bbbd55328526d163b1d

    Score
    10/10
    • QNodeService

      Trojan/stealer written in NodeJS and spread via Java downloader.

    • Executes dropped EXE

    • JavaScript code in executable

MITRE ATT&CK Matrix

Tasks