njrat | 894b6b2ba32dbcb980882299ae7b0389b2182accc27feda5d356a4ef749b27e0 | Triage

Sharing

General

Target

894b6b2ba32dbcb980882299ae7b0389b2182accc27feda5d356a4ef749b27e0
Size

43KB
Sample

210929-k2pt6aece3
MD5

28c3f61294f4e7f30725de6515474e51
SHA1

e678e3e8680a039784cc370c642a679980f96333
SHA256

894b6b2ba32dbcb980882299ae7b0389b2182accc27feda5d356a4ef749b27e0
SHA512

3bd62061931cf9d4a14c239e023fc0d7d25a39a68817a9bbefec944facf561a23d4dd122d62047f85ac8a1de35e7196817b78af04de1ae66993165ddace78de7

Score

10^/10

njrat hacked

Malware Config

Extracted

Family

njrat

Version

Njrat 0.7 Golden By Hassan Amiri

Botnet

HacKed

C2

127.0.0.1:5552

Mutex

Windows Update

Attributes

reg_key
Windows Update
splitter
|Hassan|

Targets

- Target
  
  894b6b2ba32dbcb980882299ae7b0389b2182accc27feda5d356a4ef749b27e0
- Size
  
  43KB
- MD5
  
  28c3f61294f4e7f30725de6515474e51
- SHA1
  
  e678e3e8680a039784cc370c642a679980f96333
- SHA256
  
  894b6b2ba32dbcb980882299ae7b0389b2182accc27feda5d356a4ef749b27e0
- SHA512
  
  3bd62061931cf9d4a14c239e023fc0d7d25a39a68817a9bbefec944facf561a23d4dd122d62047f85ac8a1de35e7196817b78af04de1ae66993165ddace78de7
Score

7^/10
- Drops startup file
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2