e4066dd2044ee697a2cff1c98e2ff663.jar

General
Target

e4066dd2044ee697a2cff1c98e2ff663.jar

Size

64KB

Sample

201211-93q3exhtp2

Score
10 /10
MD5

e4066dd2044ee697a2cff1c98e2ff663

SHA1

058449f3d57afcc7584ec41ef118842faef71da5

SHA256

cec468dcecdddadb242dff32e02cb145c79717e70515488fc1d4c80200ee187c

SHA512

c6f0e1bf4a7d7503bd918340f00058f92aa624cb7fcc7d3f988cad7718142cd37f9593346e19c11cb8f9aabe80aa9f96896653ce364d3dbcbca6b5c7dece0c61

Malware Config
Targets
Target

e4066dd2044ee697a2cff1c98e2ff663.jar

MD5

e4066dd2044ee697a2cff1c98e2ff663

Filesize

64KB

Score
10/10
SHA1

058449f3d57afcc7584ec41ef118842faef71da5

SHA256

cec468dcecdddadb242dff32e02cb145c79717e70515488fc1d4c80200ee187c

SHA512

c6f0e1bf4a7d7503bd918340f00058f92aa624cb7fcc7d3f988cad7718142cd37f9593346e19c11cb8f9aabe80aa9f96896653ce364d3dbcbca6b5c7dece0c61

Tags

Signatures

  • QNodeService

    Description

    Trojan/stealer written in NodeJS and spread via Java downloader.

    Tags

  • Executes dropped EXE

  • JavaScript code in executable

Related Tasks

MITRE ATT&CK Matrix
Collection
    Command and Control
      Credential Access
        Defense Evasion
          Discovery
            Execution
              Exfiltration
                Impact
                  Initial Access
                    Lateral Movement
                      Persistence
                        Privilege Escalation
                          Tasks

                          static1

                          behavioral1

                          1/10

                          behavioral2

                          10/10