Description
Trojan/stealer written in NodeJS and spread via Java downloader.
DHL PAKET(2).jar
103KB
201109-ra1aw6nyca
e299449157cf031f03fbfe79d7900d52
d57ca0f5a6770b760f40e2be3948869ff14caa08
fcca91752e1952ea82e9528213dcd6e063277b0df1becad05cd5071509ef6074
e4f61b06a8b6f605478b612851ead655f984866919973a6740e417e055c20c309a81786eb3d8c99816a49abe07c009e2efa8bfd672c5e7516dfc8a8fbe23a6ba
DHL PAKET(2).jar
e299449157cf031f03fbfe79d7900d52
103KB
d57ca0f5a6770b760f40e2be3948869ff14caa08
fcca91752e1952ea82e9528213dcd6e063277b0df1becad05cd5071509ef6074
e4f61b06a8b6f605478b612851ead655f984866919973a6740e417e055c20c309a81786eb3d8c99816a49abe07c009e2efa8bfd672c5e7516dfc8a8fbe23a6ba
Trojan/stealer written in NodeJS and spread via Java downloader.
Uses a legitimate IP lookup service to find the infected system's external IP.