Analysis

  • max time kernel
    150s
  • max time network
    150s
  • platform
    windows7_x64
  • resource
    win7v20201028
  • submitted
    09-11-2020 20:14

General

  • Target

    bcf2d1a52dcbaa0a5af0867df9e1287d.jar

  • Size

    6KB

  • MD5

    bcf2d1a52dcbaa0a5af0867df9e1287d

  • SHA1

    3ab1cce1cc4d351680f39ad199edb361a50c9d2f

  • SHA256

    d06a88f0edeaf77c468dbabb3580bc6ba4812be5eec6cb8446b9f7f41bcc2494

  • SHA512

    fef054a76c537a6a1d929668322a4d140cb8c89f0b9f1d6f5c7e451017c94c8369fce19ab548b3dfb61557cce79cca355816901b59623af69b43234085d8689b

Score
10/10

Malware Config

Signatures

  • QNodeService

    Trojan/stealer written in NodeJS and spread via Java downloader.

Processes

  • C:\Windows\system32\java.exe
    java -jar C:\Users\Admin\AppData\Local\Temp\bcf2d1a52dcbaa0a5af0867df9e1287d.jar
    1⤵
      PID:1632

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads