General
-
Target
B2F0BC2708ED09126D4DCD9196B3C560622DF056CD604.exe
-
Size
37KB
-
Sample
211114-y5klhadgcl
-
MD5
1424e47c68eff1985f6d5b28a2c5478d
-
SHA1
d8cebfb69902702bf7d3a77acfe87e206abec044
-
SHA256
b2f0bc2708ed09126d4dcd9196b3c560622df056cd60475af82d8e998d5d45e6
-
SHA512
c1494f35c63f3b7b4c17f443ce72cc7ddb217fff929e87ea1e8152fa638564cfcf28ec2416530fdf27fc1f63ffd84fccab0e15d88d2a6d0824e182d761ba946e
Behavioral task
behavioral1
Sample
B2F0BC2708ED09126D4DCD9196B3C560622DF056CD604.exe
Resource
win7-en-20211104
Malware Config
Extracted
njrat
im523
dwm.exe
2.tcp.ngrok.io:13683
c041ad4256e5d4ce6d26b95663fa9d30
-
reg_key
c041ad4256e5d4ce6d26b95663fa9d30
-
splitter
|'|'|
Targets
-
-
Target
B2F0BC2708ED09126D4DCD9196B3C560622DF056CD604.exe
-
Size
37KB
-
MD5
1424e47c68eff1985f6d5b28a2c5478d
-
SHA1
d8cebfb69902702bf7d3a77acfe87e206abec044
-
SHA256
b2f0bc2708ed09126d4dcd9196b3c560622df056cd60475af82d8e998d5d45e6
-
SHA512
c1494f35c63f3b7b4c17f443ce72cc7ddb217fff929e87ea1e8152fa638564cfcf28ec2416530fdf27fc1f63ffd84fccab0e15d88d2a6d0824e182d761ba946e
-
suricata: ET MALWARE Generic njRAT/Bladabindi CnC Activity (ll)
suricata: ET MALWARE Generic njRAT/Bladabindi CnC Activity (ll)
-
Modifies Windows Firewall
-