qnodeservice | 0ffc62df8da2c91b8affad5acbc9eec81ad27614195ad75b1e838ada8befd2f7 | Triage

Submit
Reports

Overview

overview

Static

static

AWB 6400815722.jar

windows7_x64

1

AWB 6400815722.jar

windows10_x64

Sharing

General

Target

AWB 6400815722.jar
Size

99KB
Sample

201109-l3ee2lfvf2
MD5

91a3fa1fd957d1d41eef560d34364e94
SHA1

0fcd5e0500278fbe09d5cf9ee814778d8cc57605
SHA256

0ffc62df8da2c91b8affad5acbc9eec81ad27614195ad75b1e838ada8befd2f7
SHA512

f91d212aab9c4638f30aad485ce8c6e8fc4732c83cb57c3c4263f6af0df71984994b61be17e1c9edf39b9e0211271396613da8b05bfc7f889c11e23b7d4044df

Score

10^/10

qnodeservice trojan

Static task

static1

Behavioral task

behavioral1

Sample

AWB 6400815722.jar

Resource

win7v20201028

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

AWB 6400815722.jar

Resource

win10v20201028

qnodeservice trojan

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  AWB 6400815722.jar
- Size
  
  99KB
- MD5
  
  91a3fa1fd957d1d41eef560d34364e94
- SHA1
  
  0fcd5e0500278fbe09d5cf9ee814778d8cc57605
- SHA256
  
  0ffc62df8da2c91b8affad5acbc9eec81ad27614195ad75b1e838ada8befd2f7
- SHA512
  
  f91d212aab9c4638f30aad485ce8c6e8fc4732c83cb57c3c4263f6af0df71984994b61be17e1c9edf39b9e0211271396613da8b05bfc7f889c11e23b7d4044df
Score

10^/10

qnodeservice trojan
- QNodeService
  Trojan/stealer written in NodeJS and spread via Java downloader.
  trojan qnodeservice
- Executes dropped EXE
- JavaScript code in executable
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

qnodeservicetrojan

© 2018-2024

Terms | Privacy