qnodeservice | ee7c1da9c1ff94204fe4f55c251b865da6fb1badf9b8b1a7624adab021fb0047 | Triage

Submit
Reports

Overview

overview

Static

static

REF_DHL120520.jar

windows7_x64

REF_DHL120520.jar

windows10_x64

Analysis

max time kernel
149s
max time network
151s
platform
windows10_x64
resource
win10v20201028
submitted
09-11-2020 19:43

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

REF_DHL120520.jar

Resource

win7v20201028

qnodeservice trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

REF_DHL120520.jar

Resource

win10v20201028

qnodeservice trojan

windows10_x64

0 signatures

0 seconds

Report Analysis Logs

General

Target

REF_DHL120520.jar
Size

3KB
MD5

3be1851180a5afed3efa60b5ab26ae13
SHA1

1e776b2056cfd4fa8b6fab3f3627acc0a92c28aa
SHA256

ee7c1da9c1ff94204fe4f55c251b865da6fb1badf9b8b1a7624adab021fb0047
SHA512

6698fe20715c76341ce3906b870e46824473de4bbc866a5f26a58f4e1a5969e73216176d6f0d11dd34118a0ad7c2303580b51317bb7db37fcb7351f6617d54aa

Score

10^/10

qnodeservice trojan

Malware Config

Signatures

QNodeService
Trojan/stealer written in NodeJS and spread via Java downloader.
trojan qnodeservice

Processes

C:\ProgramData\Oracle\Java\javapath\java.exe
java -jar C:\Users\Admin\AppData\Local\Temp\REF_DHL120520.jar
1⤵
PID:1304

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2024

Terms | Privacy