qnodeservice | 7cc6d580f1c72ad1c7f77631e1fab1a3aaaefa795755c79992669bc3a6e637c5 | Triage

Submit
Reports

Overview

overview

Static

static

VACCINE FO...19.jar

windows7_x64

VACCINE FO...19.jar

windows10_x64

Analysis

max time kernel
150s
max time network
148s
platform
windows10_x64
resource
win10v20201028
submitted
09-11-2020 19:44

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

VACCINE FOR COVID-19.jar

Resource

win7v20201028

qnodeservice trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

VACCINE FOR COVID-19.jar

Resource

win10v20201028

qnodeservice trojan

windows10_x64

0 signatures

0 seconds

Report Analysis Logs

General

Target

VACCINE FOR COVID-19.jar
Size

3KB
MD5

31e1b8e16e8eea261bc452b0717baff1
SHA1

0c98f2d673ac048ca3f7f32ebddee9b7aff70e29
SHA256

7cc6d580f1c72ad1c7f77631e1fab1a3aaaefa795755c79992669bc3a6e637c5
SHA512

99f7899590962994d8e52e772dc9985a1bbcbb8861d3608a395aa886d73076d2477f3ab364a8e51adcdf54f15ecd2044f0676e5a282165a94e7094d7950ff41a

Score

10^/10

qnodeservice trojan

Malware Config

Signatures

QNodeService
Trojan/stealer written in NodeJS and spread via Java downloader.
trojan qnodeservice

Processes

C:\ProgramData\Oracle\Java\javapath\java.exe
java -jar "C:\Users\Admin\AppData\Local\Temp\VACCINE FOR COVID-19.jar"
1⤵
PID:580

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2024

Terms | Privacy