General
-
Target
84bd6cb486f45bf0d92d2f259045febd.exe
-
Size
761KB
-
Sample
210906-14l42segbl
-
MD5
84bd6cb486f45bf0d92d2f259045febd
-
SHA1
d6a8506acd3aa0f81555da8dab87efc70e8a20f4
-
SHA256
2b04dc24a677c5892b077491d6e794fe8758341919d363067aaed539f3dec2db
-
SHA512
bf072d5eff0acd67ac57bf23f4454d695c0e9e56b122f9133f50bc61daca1726d3ddf3c3648b8c0005d7a0153b23164888602b76ea0e657988c554b98ae52640
Static task
static1
Behavioral task
behavioral1
Sample
84bd6cb486f45bf0d92d2f259045febd.exe
Resource
win7-en
Behavioral task
behavioral2
Sample
84bd6cb486f45bf0d92d2f259045febd.exe
Resource
win10v20210408
Malware Config
Extracted
njrat
Njrat 0.7 Golden By Hassan Amiri
xxxxxxxxxx
pubg.ddns.net:147
Windows Update
-
reg_key
Windows Update
-
splitter
|Hassan|
Targets
-
-
Target
84bd6cb486f45bf0d92d2f259045febd.exe
-
Size
761KB
-
MD5
84bd6cb486f45bf0d92d2f259045febd
-
SHA1
d6a8506acd3aa0f81555da8dab87efc70e8a20f4
-
SHA256
2b04dc24a677c5892b077491d6e794fe8758341919d363067aaed539f3dec2db
-
SHA512
bf072d5eff0acd67ac57bf23f4454d695c0e9e56b122f9133f50bc61daca1726d3ddf3c3648b8c0005d7a0153b23164888602b76ea0e657988c554b98ae52640
Score10/10-
suricata: ET MALWARE Generic njRAT/Bladabindi CnC Activity (ll)
suricata: ET MALWARE Generic njRAT/Bladabindi CnC Activity (ll)
-
Executes dropped EXE
-
Drops startup file
-
Adds Run key to start application
-