Analysis

  • max time kernel
    150s
  • max time network
    100s
  • platform
    windows7_x64
  • resource
    win7v20201028
  • submitted
    09-11-2020 19:29

General

  • Target

    Urgent Enquiry.jar

  • Size

    5KB

  • MD5

    b278b670859c63b6c86179b4879309b9

  • SHA1

    2b4612dc5884e7861b085650b52814ae5aa61a28

  • SHA256

    06ce7e6752998aaad5602080c57ecfae2275542e36ebd8e0c0e429df5fcccfa3

  • SHA512

    1c29f0e82253698df166b138b251b5640db7b70ebd9fec2ec30232cabac4ceb882b549f843331e04d61a8fafda5b43c8ce7e9b06942f8926c60cb82263639f6c

Score
10/10

Malware Config

Signatures

  • QNodeService

    Trojan/stealer written in NodeJS and spread via Java downloader.

Processes

  • C:\Windows\system32\java.exe
    java -jar "C:\Users\Admin\AppData\Local\Temp\Urgent Enquiry.jar"
    1⤵
      PID:2028

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads