MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 189a48156cabffe43bfd778e5eb41ac05e7bd600e7ae51f339cc80d75b569f8f. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Intelligence File information Yara Comments

SHA256 hash: 189a48156cabffe43bfd778e5eb41ac05e7bd600e7ae51f339cc80d75b569f8f
SHA1 hash: 7b2d8049fa4cbbc6146b6da761335bb8e2248ba2
MD5 hash: 481108a91c6b9c2ac843516e489ff952
File name:481108a91c6b9c2ac843516e489ff952.jar
Download: download sample
Signature QNodeService
File size:5'810 bytes
First seen:2020-05-23 11:59:10 UTC
Last seen:Never
File type:Java file jar
MIME type:application/java-archive
ssdeep 96:c1yT8cVFgW9xOwj/9XsH61vsC8TEVdWcUsSMqxN3sx+D37MhGmZ9uNExtiIqOAm:L8HW9swj/9XsH6Zs3EVdcsYvWZZgNYE2
TLSH 4AC14C7DBED18014D0A7BA3475B94262BA2F02C4DB4BD4F39298605B4934E8B4B43AEC
Reporter @abuse_ch
Tags:jar QNodeService qua


Twitter
@abuse_ch
QNodeService C2:
https://eyesofgod.ddns.net

Intelligence


Mail intelligence No data
# of uploads 1
# of downloads 22
Origin country FR FR
ClamAV SecuriteInfo.com.Java.Agent.BKD.17975.30881.UNOFFICIAL
VirusTotal:Virustotal results 5.08%

File information


The table below shows additional information about this malware sample such as delivery method and external references.

Comments