njrat | 6036e604d566616a1b8db041ea215505488265f10788f9e2c52d8af180601cfc

Resubmissions

18-09-2021 06:48

210918-hk15rabgdk 10

Sharing

Copy URL

Twitter E-mail

General

Target

Njrat Full Edition.rar
Size

33.7MB
Sample

210918-hk15rabgdk
MD5

604137912a470c1d71d8b7aca0fd2d06
SHA1

43c6fc0c83c270a8990cbdc2a32a98863c6de4ca
SHA256

6036e604d566616a1b8db041ea215505488265f10788f9e2c52d8af180601cfc
SHA512

41fe281d8185e20f4b96f4d4841febc5a4d98049df43e339d2297f6383fc541040b5e36592ffdc1fd175a4f2e8802defcad67db8707a929c442e7cb446f56c99

Score

10^/10

njrat ransomware

Malware Config

Extracted

Family

njrat

Version

Njrat 0.7 Golden By Hassan Amiri

Mutex

[RNVD]

Attributes

reg_key
[RNVD]
splitter
|Hassan|

Extracted

Ransom Note

########### # njRAT Lime Edition # Coded By # ₦ȲĀ₦÷ĊĀŦ ########### [!] BitCoin Grabber Will replace your address instead of the receiver address [!] Ransomware Encrypt client ( Desktop Ducoment Pictures Vidoes ) Folders [!] Torrent Try to seed URL, then look at [LOGS] For more information. IF the client has no torrent software use "Install" [!] Malware Killer Known as Bot Killer, It will kill any RAT on your clients PC [!] USB Spread Make a copy of your client.exe then paste it on any USB driver on client PC [!] Anti It will kill Client.exe when the user is using Vmware or Sandboxie or Hacker process...etc to make sure no one will see weird connection or process. If you checked Persistence, client.exe will be reopened after it was killed. [!] Delete Logs This will delete any fingerprints or logs from windows OS [!] Bypass UAC It will give you Admin privilege without pop-out request. [!] Timeout Watch this

Targets

- Target
  
  Njrat Full Edition/NjRat 0.7D Danger Edition/ER/Abrairnotes.dll
- Size
  
  55B
- MD5
  
  cad085eb4a51b05d3f2905c9a2996fec
- SHA1
  
  f2c6be581eac7a2580666fd3c589f15cf6599996
- SHA256
  
  321fcf894e5a1853ffb430624d3085f04025563e8e5d8ae1c9c28dbce93d5f93
- SHA512
  
  f6e50801d3de71926568c9b225b2c83607269b716aa18b9f9af417dbb32e7160395c1f53c80c07bef2b50209ab1e92a5b6aaac46d36ab6f14e62b8e83e1503c4
Score

1^/10
behavioral1 behavioral2
- Target
  
  Njrat Full Edition/NjRat 0.7D Danger Edition/ER/Abrier.dll
- Size
  
  79B
- MD5
  
  5514b7e5a95e10c6d37278bb973651b2
- SHA1
  
  44049d7456b90ef04b9c5c414167f1594f54bbf8
- SHA256
  
  ed0aa6ecbb2d5d6ef3b8431d13d4562d89c2e1c88636c22dbbbbea81e32f913d
- SHA512
  
  3b98f20638cd63612f035fe331b6bdb3ba1cb737df277da762005eb90f548f72fff43977ab502daa105ec571011e277bfdca0f34cafbdac4509ad53c8f175b56
Score

1^/10
behavioral3 behavioral4
- Target
  
  Njrat Full Edition/NjRat 0.7D Danger Edition/ER/Apraircam.dll
- Size
  
  83B
- MD5
  
  cc795c9c4a83aa1ede067f96f1eb8d15
- SHA1
  
  32b8e1c43787353f7d87514e279288aff5f7d4f6
- SHA256
  
  37d23694738615464be8a3234bcc59592987432c8863db67e30385b8bb3ef450
- SHA512
  
  ec0b8f6600b2b0443ea6f271fcf16804e380b6f51f3f74997dc5c53ed28ece8ece58a12686b451532ed31941a67fa075305314fba7fa8555a7fb8cf6424c6fc5
Score

1^/10
behavioral5 behavioral6
- Target
  
  Njrat Full Edition/NjRat 0.7D Danger Edition/ER/Bipe.dll
- Size
  
  65B
- MD5
  
  4992e2814a8597fb20b5282e568a032d
- SHA1
  
  e0e1bb5cdcc6eae4714ed420e158717be66c45fa
- SHA256
  
  c1c8afde84694f203ebb49766454ce17179e32c06a0bbdd272bf598c0d9b7c0e
- SHA512
  
  dfe05b7db512c82b5c0d996c13086133ffd70547c69f819486d311aae3d687516bc4e412f8ef7c7755456d84e37ce33d55ff30b71208335144194fc2d67db903
Score

1^/10
behavioral7 behavioral8
- Target
  
  Njrat Full Edition/NjRat 0.7D Danger Edition/ER/Delet A.dll
- Size
  
  83B
- MD5
  
  b256a2a73f8436243481712965f3fd48
- SHA1
  
  696657223bc7be99c1cb275b2501850c03581001
- SHA256
  
  fd8802c66f18b5d7175bd3eaf628c652525605be88b8149a37e7ec731f3ab963
- SHA512
  
  aae2b68303ce9fe22f260f31f9fd5ee7edf4bdff7e99372df35a1e0d0a5a3714a915c23d8d68a97417cc5a3c431d0dac3a3c289aa74764308e63709b99d94dca
Score

1^/10
behavioral9 behavioral10
- Target
  
  Njrat Full Edition/NjRat 0.7D Danger Edition/ER/Delettemp.dll
- Size
  
  199B
- MD5
  
  5fce1e96bf39cd18ede1c35b48a90b43
- SHA1
  
  e8e323eac6292b077c0b9af93c89dd869477a4a5
- SHA256
  
  5cbea0f270bc1d57e2231a4d2d5e5d8323710d5757e714d5559e90dc86432c93
- SHA512
  
  bd5fa97a9c67c6b342569653362b6896b7eb82be561695ba46b4975a3d0dfd2d3d3ed108e7ae4dbbf1ed7a4deeca2f54fc2477a946b124a6e5819300b553b0e0
Score

1^/10
behavioral11 behavioral12
- Target
  
  Njrat Full Edition/NjRat 0.7D Danger Edition/ER/Destentrnet.dll
- Size
  
  33B
- MD5
  
  0920bfe00503b41bc09350f6d60412e9
- SHA1
  
  4ad929b21d7f51fc414619fc7c7a6eb702ac1aba
- SHA256
  
  0ec9ad05ab5eac77b92dcdf1b2f8f563d626b9b6a64619da9fd64aa375f97638
- SHA512
  
  19f56252682e633293f08207cf88af0003c1959cfe102b66e59f8b4c76b4dea11830d77073cef35bf9f6f4e1200d0a98e78240622956a1cf614ccd6fe8cf764c
Score

1^/10
behavioral13 behavioral14
- Target
  
  Njrat Full Edition/NjRat 0.7D Danger Edition/ER/User.dll
- Size
  
  923B
- MD5
  
  456c3e1669d900ebe41355349deb28e0
- SHA1
  
  57d3afa70c9cff74b74366fb6d34bc57cf01312a
- SHA256
  
  e4125f396993ea0876f3ffa9bffc46134dd20d7c8e4d077ddadee67b6ca33abe
- SHA512
  
  7300fa661115e8606a766093698ee5c760162293d65216a26ba54fc83cf866bcc16da6e84aa304c917106eb94c0f5cce5c95b1d0fb1ee2dc1c1b2f0c631d02df
Score

1^/10
behavioral15 behavioral16
- Target
  
  Njrat Full Edition/NjRat 0.7D Danger Edition/ER/dcr.dll
- Size
  
  37B
- MD5
  
  1cbc3a2f81d4259e3bf61249711fec81
- SHA1
  
  7ba62560df466c6dcd794854a25aeb5b088968d8
- SHA256
  
  6a207f770478d59da0d2aa43a9719ef05b3f85c8c700400746ca3ab0463d08f0
- SHA512
  
  74ba85a391d769686c95001af6e29f9fe2ccaa4d119247fac31e65c8becda7be1ea9fa3eb9f2a06c1d48ac4b580ad8e63c14e06d94e8dd07b26129df7f1f4bc0
Score

1^/10
behavioral17 behavioral18
- Target
  
  Njrat Full Edition/NjRat 0.7D Danger Edition/ER/destedmous.dll
- Size
  
  160B
- MD5
  
  86db8aaa81d53ba3647175fa02aec88d
- SHA1
  
  27277b6740e72bee1efdc2b21a6b4fb147e493e2
- SHA256
  
  b7dfc64c735cb92f98937b9bb77cbea0f8bc6bc94e3ef14155b2611a36482e25
- SHA512
  
  a846322ee5037dc8d9c8aa5be8badf7f295250c6374702d0e5e4972ff6db41fdd8f9765ed3313e9a083bb07a66d096c03f38a375ab5aee2b28a16c9d21527d4b
Score

1^/10
behavioral19 behavioral20
- Target
  
  Njrat Full Edition/NjRat 0.7D Danger Edition/ER/dromous.dll
- Size
  
  67B
- MD5
  
  1cc401169ef8cf1e8977f4e92dfe72c7
- SHA1
  
  d04c32295d4e563978fa0abb1b32ba52699cb08d
- SHA256
  
  32c699ebb7394ddb2d56f092ef10fde4d9f4bcf808dbe11bad777e7bc73f7aae
- SHA512
  
  076eb06d9fbf8bf1d6a4c5043d803ee7b5cf0307253de6358f8ea70e0bf240f5ae2208fbe9a44778e782e29c54751936f393ade6e292064d2134ed223506866b
Score

1^/10
behavioral21 behavioral22
- Target
  
  Njrat Full Edition/NjRat 0.7D Danger Edition/ER/infctcmd.dll
- Size
  
  53B
- MD5
  
  b72c081752f133cf07327f33fa4f819f
- SHA1
  
  19d19299a17de80c1cb97df79b8a659f09fd958a
- SHA256
  
  e677fb6d2da669557df503eb45de14c3d3acf5509bb2005fcc4be39ac975f2ae
- SHA512
  
  876dfe36eb1d47d49916512b3634bfb19a0b43f90b7348fcde4246e93dfef1521b59b4299c09071521d2d83e92385faa93557b18764e364ae1bc78cab56443eb
Score

1^/10
behavioral23 behavioral24
- Target
  
  Njrat Full Edition/NjRat 0.7D Danger Edition/ER/laxer.dll
- Size
  
  58B
- MD5
  
  e67ee9fa20340544e65bc2cfba5d8192
- SHA1
  
  7b49b96219d3ef4a2660a0deb6d70df69d73ec6f
- SHA256
  
  21ab187279045e81f550c170fdc8b73117f4e4dc2e608bdb80865540264fdab6
- SHA512
  
  b1786afb5f50dd2001862e0a26fccba91aeecb338a14ee55ef0a09f5f0efb0e7e68a52e0c1b545032930a42668a27d729d334abacb1e0c85b1583887a32480a8
Score

1^/10
behavioral25 behavioral26
- Target
  
  Njrat Full Edition/NjRat 0.7D Danger Edition/ER/logoff.dll
- Size
  
  37B
- MD5
  
  3d79995c5af417fb5b26f78b02000f49
- SHA1
  
  7e1f39492457eb8be9c0b1bed130f1b205b41ad5
- SHA256
  
  2036a894b2c0eaeb684a56b5da1e2bbf992ff50fba536e606fb1adadf6cdec4c
- SHA512
  
  21a745ee1c5b8482573d619d54daa71c6b35095ec0521c1cf97c8d1e6470f236e94e0688d013c597699ee9af1df9be129e8b0e0e39b25a725daa7e9b7b0d92e6
Score

1^/10
behavioral27 behavioral28
- Target
  
  Njrat Full Edition/NjRat 0.7D Danger Edition/ER/maltExe.dll
- Size
  
  60B
- MD5
  
  94070806e01c1ae7fe2aae46d929387a
- SHA1
  
  0fcd747b0fd81b01ea54fbd849388b6e49ff1698
- SHA256
  
  4f553023c9fdfea5f806c86d6bdd40d94348843d4a4efd91dc952a53229a4358
- SHA512
  
  1334b73fadeb074ea1f31f379bb76f4274af5ddfc48a5c28139e766202c373a8b25e0ba2105537673bdf5de9df625dcbd870ef0b8a4506f9674c88bcd2595e08
Score

1^/10
behavioral29 behavioral30
- Target
  
  Njrat Full Edition/NjRat 0.7D Danger Edition/ER/past0.dll
- Size
  
  183B
- MD5
  
  ab45b6913751e20d60d6c9a44a229a66
- SHA1
  
  fbf98231ced1c5667bb8b83114ca2f83b044698f
- SHA256
  
  71385e3fb017bb452466ab1ad8764950c14a7af856d0ee8c147cf8f7f073b2ec
- SHA512
  
  b462bd82a58ff51d3351ae5168028439fe3dbfbaeb2465c8b300419fb5d9115eb2091aa6fe4e11cf30ba9ee37e3ef175211e5053d6fc7a3398deace787180f4e
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Matrix

Tasks

static1

ransomwarenjrat

Score

10^/10

Resubmissions

Sharing

General

Malware Config

Extracted

Extracted

Targets

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32