Overview

overview

10

Static

static

AWB 6400815722.jar

windows7_x64

1

AWB 6400815722.jar

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    AWB 6400815722.jar

  • Size

    99KB

  • Sample

    201109-l3ee2lfvf2

  • MD5

    91a3fa1fd957d1d41eef560d34364e94

  • SHA1

    0fcd5e0500278fbe09d5cf9ee814778d8cc57605

  • SHA256

    0ffc62df8da2c91b8affad5acbc9eec81ad27614195ad75b1e838ada8befd2f7

  • SHA512

    f91d212aab9c4638f30aad485ce8c6e8fc4732c83cb57c3c4263f6af0df71984994b61be17e1c9edf39b9e0211271396613da8b05bfc7f889c11e23b7d4044df

Score
10/10
qnodeservicetrojan

Malware Config

Targets

    • Target

      AWB 6400815722.jar

    • Size

      99KB

    • MD5

      91a3fa1fd957d1d41eef560d34364e94

    • SHA1

      0fcd5e0500278fbe09d5cf9ee814778d8cc57605

    • SHA256

      0ffc62df8da2c91b8affad5acbc9eec81ad27614195ad75b1e838ada8befd2f7

    • SHA512

      f91d212aab9c4638f30aad485ce8c6e8fc4732c83cb57c3c4263f6af0df71984994b61be17e1c9edf39b9e0211271396613da8b05bfc7f889c11e23b7d4044df

    Score
    10/10
    qnodeservicetrojan

    • QNodeService

      Trojan/stealer written in NodeJS and spread via Java downloader.

      trojanqnodeservice

    • Executes dropped EXE

    • JavaScript code in executable

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks