Overview

overview

10

Static

static

56c2f9dab2...8a.exe

windows7_x64

10

56c2f9dab2...8a.exe

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    56c2f9dab29619513c5d1b0cf43c78021c4ab7e5161f3ed524493977b60b2e8a

  • Size

    76KB

  • Sample

    220124-dgrppaagfq

  • MD5

    e846dc1ab2fdeae0f02faf9f92626a9e

  • SHA1

    79c4e44985b090ad3b6832355b38215d955a9277

  • SHA256

    56c2f9dab29619513c5d1b0cf43c78021c4ab7e5161f3ed524493977b60b2e8a

  • SHA512

    c875b36917d57e50af45cb468cc05d22a01744fe2d2b4d12802342ff3a37996fa1432309b695402266274d4520101176043dda30d1607f250c59308d265c7346

Score
10/10
njrattrojan

Malware Config

Targets

    • Target

      56c2f9dab29619513c5d1b0cf43c78021c4ab7e5161f3ed524493977b60b2e8a

    • Size

      76KB

    • MD5

      e846dc1ab2fdeae0f02faf9f92626a9e

    • SHA1

      79c4e44985b090ad3b6832355b38215d955a9277

    • SHA256

      56c2f9dab29619513c5d1b0cf43c78021c4ab7e5161f3ed524493977b60b2e8a

    • SHA512

      c875b36917d57e50af45cb468cc05d22a01744fe2d2b4d12802342ff3a37996fa1432309b695402266274d4520101176043dda30d1607f250c59308d265c7346

    Score
    10/10
    njrattrojan

    • njRAT/Bladabindi

      Widely used RAT written in .NET.

      trojannjrat

    • Executes dropped EXE

    • Drops startup file

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks