Overview

overview

10

Static

static

10

ad6d18c89e...8d.exe

windows7_x64

8

ad6d18c89e...8d.exe

windows10_x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ad6d18c89eef983fc9f430c196126c8d.exe

  • Size

    37KB

  • Sample

    211210-24jvcsabd9

  • MD5

    ad6d18c89eef983fc9f430c196126c8d

  • SHA1

    afb1de83bc99267054f39829d9a43974b9e40a20

  • SHA256

    c54173049678a8818d2857d63c4b671ffe1652c74280ede9f210f542881e0287

  • SHA512

    3bee79110ff9394828d4505648c0895f3fa2986e633da418532937cfb0160e30b99f163f3ca1895b0765f61bafd9d1969eec78c0f50aa29d04ae731dde5ea92e

Score
10/10
njratievasion

Malware Config

Extracted

Family

njrat

Version

im523

Botnet

i

C2

8.tcp.ngrok.io:16236

Mutex

f072c164e79deed097f86598c13d29c4

Attributes
  • reg_key

    f072c164e79deed097f86598c13d29c4

  • splitter

    |'|'|

Targets

    • Target

      ad6d18c89eef983fc9f430c196126c8d.exe

    • Size

      37KB

    • MD5

      ad6d18c89eef983fc9f430c196126c8d

    • SHA1

      afb1de83bc99267054f39829d9a43974b9e40a20

    • SHA256

      c54173049678a8818d2857d63c4b671ffe1652c74280ede9f210f542881e0287

    • SHA512

      3bee79110ff9394828d4505648c0895f3fa2986e633da418532937cfb0160e30b99f163f3ca1895b0765f61bafd9d1969eec78c0f50aa29d04ae731dde5ea92e

    Score
    8/10
    evasion
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Modify Existing Service

1
T1031

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks