Overview

overview

10

Static

static

10

Server.exe

windows7_x64

8

Server.exe

windows10_x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Server.exe

  • Size

    106KB

  • Sample

    211113-xn51facdbk

  • MD5

    d1670745ce45373164c84b0640a71308

  • SHA1

    7b8806732eb7f50a5130f5118af76a5941a567ee

  • SHA256

    52cc89dc0256a010e79f40a788658705fd7f98a76055fc6a443870523c89464b

  • SHA512

    dc3c08c62f088a249014f9250c03258f6e807c63b4e4945d2a308c64ef87c5fb1cc203c52276fe5ee6837ae8a734e245c65721e6b616586d4d507031e0d03849

Score
10/10
njrathackedevasion

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

HacKed

C2

FRANSESCOTI3LjAuFRANSESCOC4x:NTU1Mg==

Mutex

3bbf8b52ae3e18e5e935bf68837bacb5

Attributes
  • reg_key

    3bbf8b52ae3e18e5e935bf68837bacb5

  • splitter

    |'|'|

Targets

    • Target

      Server.exe

    • Size

      106KB

    • MD5

      d1670745ce45373164c84b0640a71308

    • SHA1

      7b8806732eb7f50a5130f5118af76a5941a567ee

    • SHA256

      52cc89dc0256a010e79f40a788658705fd7f98a76055fc6a443870523c89464b

    • SHA512

      dc3c08c62f088a249014f9250c03258f6e807c63b4e4945d2a308c64ef87c5fb1cc203c52276fe5ee6837ae8a734e245c65721e6b616586d4d507031e0d03849

    Score
    8/10
    evasion
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Modify Existing Service

1
T1031

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks