njrat | c88b3b1eb6d7d4b7b386ac6fead82c5b1ffb6e8ec7f40fd4961721b58a19ea6a | Triage

Submit
Reports

Overview

overview

Static

static

c88b3b1eb6...6a.exe

windows7_x64

c88b3b1eb6...6a.exe

windows10_x64

Sharing

General

Target

c88b3b1eb6d7d4b7b386ac6fead82c5b1ffb6e8ec7f40fd4961721b58a19ea6a
Size

3.5MB
Sample

220124-dmqpksahb5
MD5

de7cfef57b848a8d7f0a1d4828d6f1ed
SHA1

baf8597d52222329b24ed7ae72262ad5f383e61b
SHA256

c88b3b1eb6d7d4b7b386ac6fead82c5b1ffb6e8ec7f40fd4961721b58a19ea6a
SHA512

6d4f761ac1f7c4a9e7384bd866333e1845ba3998f34e294fea8934e3e7106f82ec5bd9f7798c56c2cb22422242adbadeecd92c9f51cac478ee608e6b3c1b96cf

Score

10^/10

njrat trojan

Static task

static1

Behavioral task

behavioral1

Sample

c88b3b1eb6d7d4b7b386ac6fead82c5b1ffb6e8ec7f40fd4961721b58a19ea6a.exe

Resource

win7-en-20211208

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

c88b3b1eb6d7d4b7b386ac6fead82c5b1ffb6e8ec7f40fd4961721b58a19ea6a.exe

Resource

win10-en-20211208

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  c88b3b1eb6d7d4b7b386ac6fead82c5b1ffb6e8ec7f40fd4961721b58a19ea6a
- Size
  
  3.5MB
- MD5
  
  de7cfef57b848a8d7f0a1d4828d6f1ed
- SHA1
  
  baf8597d52222329b24ed7ae72262ad5f383e61b
- SHA256
  
  c88b3b1eb6d7d4b7b386ac6fead82c5b1ffb6e8ec7f40fd4961721b58a19ea6a
- SHA512
  
  6d4f761ac1f7c4a9e7384bd866333e1845ba3998f34e294fea8934e3e7106f82ec5bd9f7798c56c2cb22422242adbadeecd92c9f51cac478ee608e6b3c1b96cf
Score

10^/10

njrat trojan
- njRAT/Bladabindi
  Widely used RAT written in .NET.
  trojan njrat
- Executes dropped EXE
- Drops startup file
- Loads dropped DLL
- Drops desktop.ini file(s)
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy