General

  • Target

    19e420fa324f949c36ed0ddd6aa97d5eab890520b86947635b16faea7fb6ed31

  • Size

    4KB

  • Sample

    220531-abew6abfbp

  • MD5

    eaa037cd12eb7be138033558dcc325e2

  • SHA1

    f797ce0da5ad3d890b7a7e97e747c3f78b17ac70

  • SHA256

    19e420fa324f949c36ed0ddd6aa97d5eab890520b86947635b16faea7fb6ed31

  • SHA512

    51636c71a5cf153972d5b1331780a210bc341cc49a794d888956cacafda43500f71b185ab7741ce826ea7e76984ed72b5e7d35d22e948d7c443e42f01495bea7

Score
10/10

Malware Config

Targets

    • Target

      PAYMENT 1567_0001.jar

    • Size

      5KB

    • MD5

      ae3ae22d472b3dd08af516fc826b37bb

    • SHA1

      0bc1a94d03c44d4ddcc1458d32f91e71eb82ab43

    • SHA256

      b5ba14af96ed4c62864c7a6659bcbebae1988edd0907c649c36b6c4ef6b67be5

    • SHA512

      06153f7ed32e213ce1de1f255b53b9df44205e00fb9c3c7e034a018d46416f903b5aaa1c33d1d42586e7287228b3e5646f7df0c7492cb9baa1777278ee32b8f2

    Score
    10/10
    • QNodeService

      Trojan/stealer written in NodeJS and spread via Java downloader.

MITRE ATT&CK Matrix

Collection

    Command and Control

      Credential Access

        Defense Evasion

          Discovery

            Execution

              Exfiltration

                Impact

                  Initial Access

                    Lateral Movement

                      Persistence

                        Privilege Escalation

                          Tasks