njrat | 75c24172fad5dcee8c4a92b183d17b5da430fce1354536124a6183f27d043754 | Triage

Sharing

General

Target

tmp/f0b2feb2-d9e8-4f14-b318-1670d25f9658_system.exe
Size

32KB
Sample

211216-wb1dradcfl
MD5

d533a598386654e53cfc0ddf48e6e6f7
SHA1

a0b7e2ba73759c865cd05cc68e16a69e651a3914
SHA256

75c24172fad5dcee8c4a92b183d17b5da430fce1354536124a6183f27d043754
SHA512

0c7c29830835c0b6bebc26872fb06ca8367b81aa13986a19c4c1abecfd5c33ceb9e6c3a3dedf8feb69c4ddf74beaf96bf8e3b31ab2d9890bf9856a716a422ebf

Score

10^/10

njrat nyan cat suricata

Malware Config

Extracted

Family

njrat

Version

0.7NC

Botnet

NYAN CAT

C2

facebook-sports.publicvm.com:250

Mutex

9be453ebbea740

Attributes

reg_key
9be453ebbea740
splitter
@!#&^%$

Targets

- Target
  
  tmp/f0b2feb2-d9e8-4f14-b318-1670d25f9658_system.exe
- Size
  
  32KB
- MD5
  
  d533a598386654e53cfc0ddf48e6e6f7
- SHA1
  
  a0b7e2ba73759c865cd05cc68e16a69e651a3914
- SHA256
  
  75c24172fad5dcee8c4a92b183d17b5da430fce1354536124a6183f27d043754
- SHA512
  
  0c7c29830835c0b6bebc26872fb06ca8367b81aa13986a19c4c1abecfd5c33ceb9e6c3a3dedf8feb69c4ddf74beaf96bf8e3b31ab2d9890bf9856a716a422ebf
Score

10^/10

suricata
- suricata: ET MALWARE Generic njRAT/Bladabindi CnC Activity (ll)
  suricata: ET MALWARE Generic njRAT/Bladabindi CnC Activity (ll)
  suricata
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2