Analysis

  • max time kernel
    150s
  • max time network
    79s
  • platform
    windows7_x64
  • resource
    win7v20201028
  • submitted
    09-11-2020 19:30

General

  • Target

    SHIPMENT DETAIL.jar

  • Size

    7KB

  • MD5

    33a9bc5b65231a81af39a14a3dc57f02

  • SHA1

    6641316ffcf9c26abd22e0c5fdeb7cc5291d28f3

  • SHA256

    b08447f166d43fa052666b2925aec43b75567f86efd52bdc9131d1cbb87e5ade

  • SHA512

    102ba7c91972c627032de589d166bc9a891a2cfaa2248820cb6a117446292772c8dc8319c27d2e68931e2bdf6ad5ecfe67e068c77f1169efd194ff1525286e50

Score
10/10

Malware Config

Signatures

  • QNodeService

    Trojan/stealer written in NodeJS and spread via Java downloader.

Processes

  • C:\Windows\system32\java.exe
    java -jar "C:\Users\Admin\AppData\Local\Temp\SHIPMENT DETAIL.jar"
    1⤵
      PID:788

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads