njrat | 64d7d58724fe40787f7fdcb2496f96206c538fb80c14fc8827f4e5af9a5c99c8 | Triage

Submit
Reports

Overview

overview

Static

static

a7c7bb5328...18.exe

windows7_x64

a7c7bb5328...18.exe

windows10_x64

Sharing

General

Target

a7c7bb532823a6e7d4ace596f146c618.exe
Size

113KB
Sample

210908-t4s42aaack
MD5

a7c7bb532823a6e7d4ace596f146c618
SHA1

d4ce3acc8b40a6880e5c57c9ec5844643413e312
SHA256

64d7d58724fe40787f7fdcb2496f96206c538fb80c14fc8827f4e5af9a5c99c8
SHA512

51f14f96d6935f336fd224319b1706f9a6d21251c568292574d564b28741ebae8647cb0fca737073ac763e3bd61a0c751538255671c542859d733494a0a566d9

Score

10^/10

njrat run runpe suricata trojan

Static task

static1

Behavioral task

behavioral1

Sample

a7c7bb532823a6e7d4ace596f146c618.exe

Resource

win7-en

njrat run runpe suricata trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

a7c7bb532823a6e7d4ace596f146c618.exe

Resource

win10v20210408

njrat run runpe suricata trojan

windows10_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

Run RunPE

Attributes

splitter
|'|'|

Targets

- Target
  
  a7c7bb532823a6e7d4ace596f146c618.exe
- Size
  
  113KB
- MD5
  
  a7c7bb532823a6e7d4ace596f146c618
- SHA1
  
  d4ce3acc8b40a6880e5c57c9ec5844643413e312
- SHA256
  
  64d7d58724fe40787f7fdcb2496f96206c538fb80c14fc8827f4e5af9a5c99c8
- SHA512
  
  51f14f96d6935f336fd224319b1706f9a6d21251c568292574d564b28741ebae8647cb0fca737073ac763e3bd61a0c751538255671c542859d733494a0a566d9
Score

10^/10

njrat run runpe suricata trojan
- njRAT/Bladabindi
  Widely used RAT written in .NET.
  trojan njrat
- suricata: ET MALWARE Generic njRAT/Bladabindi CnC Activity (ll)
  suricata: ET MALWARE Generic njRAT/Bladabindi CnC Activity (ll)
  suricata
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

njratrun runpesuricatatrojan

behavioral2

njratrun runpesuricatatrojan

© 2018-2024

Terms | Privacy