General

  • Target

    42b7097bdd2e1e5205880bf48aefb0e92b9a6c2fd5d21dcac07277539759b22e

  • Size

    5KB

  • Sample

    220521-bft3babgg2

  • MD5

    f00c2cbfff7376833e0413455b9346d5

  • SHA1

    46a322222617b2766e3f9b212566d8ee6d9e85e8

  • SHA256

    42b7097bdd2e1e5205880bf48aefb0e92b9a6c2fd5d21dcac07277539759b22e

  • SHA512

    0591a99e56b12a81e304710935acf0d1d88c1de59e70181d3327711eca3e778902e6897781266a8c8dd9c8b44efbd8e3f07b0784c43d2e4a6239e7609eb14d9b

Score
10/10

Malware Config

Targets

    • Target

      Covid-19 Job Retention Scheme.jar

    • Size

      5KB

    • MD5

      f13e4594ac0d10a57634392e08e11f12

    • SHA1

      6c9864692c9682854600d650f47d58c9e15d58c2

    • SHA256

      c6b526ef91a8df79c7ff3e62525794a84227e19558daaebc3277b8ec38c4e01a

    • SHA512

      fc2abad81f5882f5984f21494b35a5fa4858b33858f73d671fc36c9eb4b9e1ae59c0c0c4c3be331f113f51ec3dbe04f286c67b9409c76d1c302fcd0e1c443faf

    Score
    10/10
    • QNodeService

      Trojan/stealer written in NodeJS and spread via Java downloader.

MITRE ATT&CK Matrix

Collection

    Command and Control

      Credential Access

        Defense Evasion

          Discovery

            Execution

              Exfiltration

                Impact

                  Initial Access

                    Lateral Movement

                      Persistence

                        Privilege Escalation

                          Tasks