Analysis

  • max time kernel
    149s
  • max time network
    143s
  • platform
    windows10_x64
  • resource
    win10v20201028
  • submitted
    09-11-2020 20:15

General

  • Target

    dc4766e1c1f0ce5f9e4bdb793e4ca46c.jar

  • Size

    4KB

  • MD5

    dc4766e1c1f0ce5f9e4bdb793e4ca46c

  • SHA1

    98b049da59964c2ee1bef1a9b5264a16e2d5d3af

  • SHA256

    0d42080c5bbe8d55cda9401b582309061e48db543101ae8527669812ddcff50f

  • SHA512

    c5a9308d7f5d42b915064c6bac27c7c1b0fc81e63ea2cb9660445611a34c73e47eb22cece5e8f33e9e4422205ca250f8e2a70a1eb25fe3cef788b39c6fa73f9f

Score
10/10

Malware Config

Signatures

  • QNodeService

    Trojan/stealer written in NodeJS and spread via Java downloader.

Processes

  • C:\ProgramData\Oracle\Java\javapath\java.exe
    java -jar C:\Users\Admin\AppData\Local\Temp\dc4766e1c1f0ce5f9e4bdb793e4ca46c.jar
    1⤵
      PID:1144

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads