njrat | b8c38677a6035dbd55e79de4e21490b10814d55291d5abad6d6d7ddd5dad63d4 | Triage

Sharing

General

Target

4kbpF3PK.exe
Size

31KB
Sample

201228-cmrl6mf2qj
MD5

4b169eac01ae414ca663e2f334d97cc3
SHA1

decbda4d92b62c6a8d8101caa7f67c5370ce9ce8
SHA256

b8c38677a6035dbd55e79de4e21490b10814d55291d5abad6d6d7ddd5dad63d4
SHA512

8c140d7e70850f7426beae9df7121db6896da737ebf230a4861a31e6ea76653cdea197ac482b041b439cc2d0dc7e6b1812e3b4d21d29d321b468bae3376b3913

Score

10^/10

njrat evasion trojan

Malware Config

Targets

- Target
  
  4kbpF3PK.exe
- Size
  
  31KB
- MD5
  
  4b169eac01ae414ca663e2f334d97cc3
- SHA1
  
  decbda4d92b62c6a8d8101caa7f67c5370ce9ce8
- SHA256
  
  b8c38677a6035dbd55e79de4e21490b10814d55291d5abad6d6d7ddd5dad63d4
- SHA512
  
  8c140d7e70850f7426beae9df7121db6896da737ebf230a4861a31e6ea76653cdea197ac482b041b439cc2d0dc7e6b1812e3b4d21d29d321b468bae3376b3913
Score

10^/10

njrat evasion trojan
- njRAT/Bladabindi
  Widely used RAT written in .NET.
  trojan njrat
- Modifies Windows Firewall
  evasion
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

njratevasiontrojan

behavioral2

njratevasiontrojan