qnodeservice | a369a221c8260826477d5cab69b0b03cc1b289735363ffab2ae87ea70a9c7da6 | Triage

Submit
Reports

Overview

overview

Static

static

5ab9cda1a6...97.jar

windows7_x64

5ab9cda1a6...97.jar

windows10_x64

Analysis

max time kernel
151s
max time network
130s
platform
windows7_x64
resource
win7v20201028
submitted
09-11-2020 19:40

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

5ab9cda1a6358a07d9f0421a63fb2397.jar

Resource

win7v20201028

qnodeservice trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

5ab9cda1a6358a07d9f0421a63fb2397.jar

Resource

win10v20201028

qnodeservice trojan

windows10_x64

0 signatures

0 seconds

Report Analysis Logs

General

Target

5ab9cda1a6358a07d9f0421a63fb2397.jar
Size

5KB
MD5

5ab9cda1a6358a07d9f0421a63fb2397
SHA1

7ac2f69fd46e29dba45b12cba3b4f2f5f0c1d7aa
SHA256

a369a221c8260826477d5cab69b0b03cc1b289735363ffab2ae87ea70a9c7da6
SHA512

0501fc71260828cdac63e008a8a82fd7caed624f4599a32c2a65f564e155181f8ce76dd25e0dfa89a40582644a622dc0566d9eae130983a8f7b0b3646f2c42d4

Score

10^/10

qnodeservice trojan

Malware Config

Signatures

QNodeService
Trojan/stealer written in NodeJS and spread via Java downloader.
trojan qnodeservice

Processes

C:\Windows\system32\java.exe
java -jar C:\Users\Admin\AppData\Local\Temp\5ab9cda1a6358a07d9f0421a63fb2397.jar
1⤵
PID:1660

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2024

Terms | Privacy