qnodeservice | 684ddc61afc23cf7a9df4e14908bf0c4f0d801eccb4449bfc3a822292e68d8ba | Triage

Submit
Reports

Overview

overview

Static

static

QUOTE-0069...20.jar

windows7_x64

QUOTE-0069...20.jar

windows10_x64

Analysis

max time kernel
150s
max time network
11s
platform
windows7_x64
resource
win7v20201028
submitted
09-11-2020 19:44

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

QUOTE-0069246832020.jar

Resource

win7v20201028

qnodeservice trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

QUOTE-0069246832020.jar

Resource

win10v20201028

qnodeservice trojan

windows10_x64

0 signatures

0 seconds

Report Analysis Logs

General

Target

QUOTE-0069246832020.jar
Size

3KB
MD5

3282814d476e684a672698120f0045f3
SHA1

032f080a8e70e8236c9157e3cfaf69e9a4257ee1
SHA256

684ddc61afc23cf7a9df4e14908bf0c4f0d801eccb4449bfc3a822292e68d8ba
SHA512

206e03e0d98b96e18a35dd163d7b62b40ae5d555ba77dcc3edb38c9d15482e0b3ccff22ab488cae08e74fb8843285cd4d902a8bbbab72640ea956dad0987c474

Score

10^/10

qnodeservice trojan

Malware Config

Signatures

QNodeService
Trojan/stealer written in NodeJS and spread via Java downloader.
trojan qnodeservice

Processes

C:\Windows\system32\java.exe
java -jar C:\Users\Admin\AppData\Local\Temp\QUOTE-0069246832020.jar
1⤵
PID:1068

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2024

Terms | Privacy