njrat | 7256a118217803dea652821dd232e8996e49759302283574e13fca80a0d5712e | Triage

Sharing

General

Target

7256a118217803dea652821dd232e8996e49759302283574e13fca80a0d5712e
Size

272KB
Sample

220129-hcdz9afba7
MD5

932fbbeb7fe9a994417e41240d0177d9
SHA1

d6165f4bc59dceeb6bcaf873258d8b0f0a664f74
SHA256

7256a118217803dea652821dd232e8996e49759302283574e13fca80a0d5712e
SHA512

a2c2a39a2c7c8129e79aa8aceb52c63d8c5345ed54b7355483611778dea7d58a4661e6abc1ea54f6700bc2a64760bfc3f4ccbbfaf911c2f26bff9a8c825100d8

Score

10^/10

njrat evasion trojan

Malware Config

Targets

- Target
  
  7256a118217803dea652821dd232e8996e49759302283574e13fca80a0d5712e
- Size
  
  272KB
- MD5
  
  932fbbeb7fe9a994417e41240d0177d9
- SHA1
  
  d6165f4bc59dceeb6bcaf873258d8b0f0a664f74
- SHA256
  
  7256a118217803dea652821dd232e8996e49759302283574e13fca80a0d5712e
- SHA512
  
  a2c2a39a2c7c8129e79aa8aceb52c63d8c5345ed54b7355483611778dea7d58a4661e6abc1ea54f6700bc2a64760bfc3f4ccbbfaf911c2f26bff9a8c825100d8
Score

10^/10

njrat evasion trojan
- njRAT/Bladabindi
  Widely used RAT written in .NET.
  trojan njrat
- Modifies Windows Firewall
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

njratevasiontrojan

behavioral2

njratevasiontrojan