qnodeservice | 0d42080c5bbe8d55cda9401b582309061e48db543101ae8527669812ddcff50f | Triage

Submit
Reports

Overview

overview

Static

static

dc4766e1c1...6c.jar

windows7_x64

dc4766e1c1...6c.jar

windows10_x64

Analysis

max time kernel
149s
max time network
143s
platform
windows10_x64
resource
win10v20201028
submitted
09-11-2020 20:15

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

dc4766e1c1f0ce5f9e4bdb793e4ca46c.jar

Resource

win7v20201028

qnodeservice trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

dc4766e1c1f0ce5f9e4bdb793e4ca46c.jar

Resource

win10v20201028

qnodeservice trojan

windows10_x64

0 signatures

0 seconds

Report Analysis Logs

General

Target

dc4766e1c1f0ce5f9e4bdb793e4ca46c.jar
Size

4KB
MD5

dc4766e1c1f0ce5f9e4bdb793e4ca46c
SHA1

98b049da59964c2ee1bef1a9b5264a16e2d5d3af
SHA256

0d42080c5bbe8d55cda9401b582309061e48db543101ae8527669812ddcff50f
SHA512

c5a9308d7f5d42b915064c6bac27c7c1b0fc81e63ea2cb9660445611a34c73e47eb22cece5e8f33e9e4422205ca250f8e2a70a1eb25fe3cef788b39c6fa73f9f

Score

10^/10

qnodeservice trojan

Malware Config

Signatures

QNodeService
Trojan/stealer written in NodeJS and spread via Java downloader.
trojan qnodeservice

Processes

C:\ProgramData\Oracle\Java\javapath\java.exe
java -jar C:\Users\Admin\AppData\Local\Temp\dc4766e1c1f0ce5f9e4bdb793e4ca46c.jar
1⤵
PID:1144

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2024

Terms | Privacy