Analysis

  • max time kernel
    149s
  • max time network
    15s
  • platform
    windows7_x64
  • resource
    win7v20201028
  • submitted
    09-11-2020 19:55

General

  • Target

    DX2500NH.jar

  • Size

    5KB

  • MD5

    d546e7a67f46794b5d1fc073a1219879

  • SHA1

    3ac07b2d9e183af6dd10ed4330337e7650566f80

  • SHA256

    e99cba9a1ff350f74dd3a7795dee0a9a92135deba5d40a8bae1069d3cee4fe15

  • SHA512

    2bf2a1ba9de1d1e06b741d03ba0fbc0826cb3b91955ff96773740ba09365c40f72065ebc6f9f9f5f54ffbcd95fd5b80ca17e73aca8a986ac6793eda08ba9d085

Score
10/10

Malware Config

Signatures

  • QNodeService

    Trojan/stealer written in NodeJS and spread via Java downloader.

Processes

  • C:\Windows\system32\java.exe
    java -jar C:\Users\Admin\AppData\Local\Temp\DX2500NH.jar
    1⤵
      PID:1644

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads