Analysis

  • max time kernel
    149s
  • max time network
    145s
  • platform
    windows10_x64
  • resource
    win10v20201028
  • submitted
    09-11-2020 20:04

General

  • Target

    a3972dbf5ab6c0e611c1ea831cbb40a0.jar

  • Size

    5KB

  • MD5

    a3972dbf5ab6c0e611c1ea831cbb40a0

  • SHA1

    608edc6ee0a08ee5d1e1f29bb4f6c133d36e8290

  • SHA256

    a12702f5fe66e9b0ac882e165a440e47d12e85ff5cf75fa594e361ff6b7c528a

  • SHA512

    6d0d849c64d2b4debce3a0ef88df036a664e14ac38083e3d393dca46e69ee62d8503fa65a6b62a9914075686f1ad8f87b8467d7c2d37166387f5257820ab24a1

Score
10/10

Malware Config

Signatures

  • QNodeService

    Trojan/stealer written in NodeJS and spread via Java downloader.

Processes

  • C:\ProgramData\Oracle\Java\javapath\java.exe
    java -jar C:\Users\Admin\AppData\Local\Temp\a3972dbf5ab6c0e611c1ea831cbb40a0.jar
    1⤵
      PID:428

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads