Presupuesto SEPT 21.pif.exe

General
Target

Presupuesto SEPT 21.pif.exe

Size

153KB

Sample

210921-n6v4hscafm

Score
10 /10
MD5

a85cab873032f76a3d5b8c686d60d14d

SHA1

23b5d5f953529e5a2d5462e49c741a09a613faa9

SHA256

9c241da391f641a5c4fabc87d324a8d2eab9cc9eced7368db9af5d946df811aa

SHA512

f5ce22a8259ae320202ed47bbc297f7e8e59e4b62acc72ab5e7ae036a18093dd3f4f4f8f7d49dc3cd901789a904e8d8627d818517c680ff873dbab3d976a0bbe

Malware Config
Targets
Target

Presupuesto SEPT 21.pif.exe

MD5

a85cab873032f76a3d5b8c686d60d14d

Filesize

153KB

Score
10 /10
SHA1

23b5d5f953529e5a2d5462e49c741a09a613faa9

SHA256

9c241da391f641a5c4fabc87d324a8d2eab9cc9eced7368db9af5d946df811aa

SHA512

f5ce22a8259ae320202ed47bbc297f7e8e59e4b62acc72ab5e7ae036a18093dd3f4f4f8f7d49dc3cd901789a904e8d8627d818517c680ff873dbab3d976a0bbe

Tags

Signatures

  • njRAT/Bladabindi

    Description

    Widely used RAT written in .NET.

    Tags

  • suricata: ET MALWARE Generic njRAT/Bladabindi CnC Activity (ll)

    Description

    suricata: ET MALWARE Generic njRAT/Bladabindi CnC Activity (ll)

    Tags

  • Modifies Windows Firewall

    Tags

    TTPs

    Modify Existing Service

Related Tasks

MITRE ATT&CK Matrix
Collection
    Command and Control
      Credential Access
        Defense Evasion
          Discovery
            Execution
              Exfiltration
                Impact
                  Initial Access
                    Lateral Movement
                      Privilege Escalation
                        Tasks

                        static1

                        behavioral1

                        10/10

                        behavioral2

                        10/10