njrat | 1f95987c21a50e65063ea256bc7c36a3b88576b5e2bfe59f422bba18afaa8156 | Triage

Sharing

General

Target

a7dedb1a3ddc4f894e81f0be200fb51d.exe
Size

43KB
Sample

211214-zeqkhahdaq
MD5

a7dedb1a3ddc4f894e81f0be200fb51d
SHA1

116f0adaa6c0b41d6cae2b0f81b8a785e3417b3b
SHA256

1f95987c21a50e65063ea256bc7c36a3b88576b5e2bfe59f422bba18afaa8156
SHA512

1cdbd4de0434adead59f47ec2a245eafdc02c4e3909f73a2e366a54a0afc0d51612370dd844fc3f32acc43274ff5d00f56e6ce88e98c31a3ddace67670a4a58e

Score

10^/10

njrat hacked suricata

Malware Config

Extracted

Family

njrat

Version

Njrat 0.7 Golden By Hassan Amiri

Botnet

HacKed

C2

0.tcp.ngrok.io:13438

Mutex

Windows Update

Attributes

reg_key
Windows Update
splitter
|Hassan|

Targets

- Target
  
  a7dedb1a3ddc4f894e81f0be200fb51d.exe
- Size
  
  43KB
- MD5
  
  a7dedb1a3ddc4f894e81f0be200fb51d
- SHA1
  
  116f0adaa6c0b41d6cae2b0f81b8a785e3417b3b
- SHA256
  
  1f95987c21a50e65063ea256bc7c36a3b88576b5e2bfe59f422bba18afaa8156
- SHA512
  
  1cdbd4de0434adead59f47ec2a245eafdc02c4e3909f73a2e366a54a0afc0d51612370dd844fc3f32acc43274ff5d00f56e6ce88e98c31a3ddace67670a4a58e
Score

10^/10

suricata
- suricata: ET MALWARE Generic njRAT/Bladabindi CnC Activity (ll)
  suricata: ET MALWARE Generic njRAT/Bladabindi CnC Activity (ll)
  suricata
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2