General
-
Target
ef4b574366874aab6cb462cb7e5e0855.exe
-
Size
43KB
-
Sample
211224-zxqm8aebfq
-
MD5
ef4b574366874aab6cb462cb7e5e0855
-
SHA1
2f1f9312825d0341f9381b13ed89292181bc7747
-
SHA256
1258cb1b4bcfdebca11f5d3cc00fa19a0bb0a79c4a4bd2c1e6f065a6f3e05e5d
-
SHA512
14240d9a3edd4282a695b2c2f7db67b103ba7e34cf6b0703eb49f527fb63816e70f4a3de1b465083ce8d8dd41c1521d8b150e258a03d5b49b2fb9234da6f4d36
Behavioral task
behavioral1
Sample
ef4b574366874aab6cb462cb7e5e0855.exe
Resource
win7-en-20211208
Malware Config
Extracted
njrat
Njrat 0.7 Golden By Hassan Amiri
HacKed
6.tcp.ngrok.io:17171
Windows Update
-
reg_key
Windows Update
-
splitter
|Hassan|
Targets
-
-
Target
ef4b574366874aab6cb462cb7e5e0855.exe
-
Size
43KB
-
MD5
ef4b574366874aab6cb462cb7e5e0855
-
SHA1
2f1f9312825d0341f9381b13ed89292181bc7747
-
SHA256
1258cb1b4bcfdebca11f5d3cc00fa19a0bb0a79c4a4bd2c1e6f065a6f3e05e5d
-
SHA512
14240d9a3edd4282a695b2c2f7db67b103ba7e34cf6b0703eb49f527fb63816e70f4a3de1b465083ce8d8dd41c1521d8b150e258a03d5b49b2fb9234da6f4d36
-
suricata: ET MALWARE Generic njRAT/Bladabindi CnC Activity (ll)
suricata: ET MALWARE Generic njRAT/Bladabindi CnC Activity (ll)
-
Executes dropped EXE
-
Loads dropped DLL
-