njrat | a31b7234f02625dcaa13aa622166c1f2b9292f92ff4375b5baddf31225b785eb | Triage

Sharing

General

Target

a31b7234f02625dcaa13aa622166c1f2b9292f92ff4375b5baddf31225b785eb
Size

469KB
Sample

210929-jqedlsebd6
MD5

c6dadfa2458bb2fcec4e19030216878b
SHA1

a39845ecc03954bcb0846c23ff33ada6875f1719
SHA256

a31b7234f02625dcaa13aa622166c1f2b9292f92ff4375b5baddf31225b785eb
SHA512

93a4ab3454c375de550d7497a9424e6500d77c08b1e6018fdbf080bc056f9da74fb4ebdfa691d2b4fe5997060913a6d5a62a231c0b881b58c0c79ce763ba5562

Score

10^/10

njrat trojan

Malware Config

Extracted

Family

njrat

C2

ilfuoco.crabdance.com:1606

Mutex

2cdbd061ab

Attributes

reg_key
2cdbd061ab
splitter
@!#&^%$

Targets

- Target
  
  a31b7234f02625dcaa13aa622166c1f2b9292f92ff4375b5baddf31225b785eb
- Size
  
  469KB
- MD5
  
  c6dadfa2458bb2fcec4e19030216878b
- SHA1
  
  a39845ecc03954bcb0846c23ff33ada6875f1719
- SHA256
  
  a31b7234f02625dcaa13aa622166c1f2b9292f92ff4375b5baddf31225b785eb
- SHA512
  
  93a4ab3454c375de550d7497a9424e6500d77c08b1e6018fdbf080bc056f9da74fb4ebdfa691d2b4fe5997060913a6d5a62a231c0b881b58c0c79ce763ba5562
Score

10^/10

njrat trojan
- njRAT/Bladabindi
  Widely used RAT written in .NET.
  trojan njrat
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2