njrat | 7830cd974a29c6c9389dfc08f13026940ce1bbe49e3bb0a4dc31799ebf0bf2c6 | Triage

Sharing

General

Target

7830cd974a29c6c9389dfc08f13026940ce1bbe49e3bb0a4dc31799ebf0bf2c6
Size

25KB
Sample

220520-e2scdshhc4
MD5

6465d3232bf60d619e1f349243661950
SHA1

82c85fe91bf4a45cd14ad306e5ea20d3d2f9e41d
SHA256

7830cd974a29c6c9389dfc08f13026940ce1bbe49e3bb0a4dc31799ebf0bf2c6
SHA512

d6b58fa92a101fca37f5eeaa0fbb90fdff192df6d8d6b34718a1ec1c14a99037f6af0d082702a4f0163d53c59146132e7766bf0a4a25af9d148359a2cafd95aa

Score

10^/10

njrat hacked trojan

Malware Config

Extracted

Family

njrat

Version

Njrat 0.7 Golden By Hassan Amiri

Botnet

HacKed

C2

zelenui.gotdns.ch:7777

Mutex

Windows Update

Attributes

reg_key
Windows Update
splitter
|Hassan|

Targets

- Target
  
  7830cd974a29c6c9389dfc08f13026940ce1bbe49e3bb0a4dc31799ebf0bf2c6
- Size
  
  25KB
- MD5
  
  6465d3232bf60d619e1f349243661950
- SHA1
  
  82c85fe91bf4a45cd14ad306e5ea20d3d2f9e41d
- SHA256
  
  7830cd974a29c6c9389dfc08f13026940ce1bbe49e3bb0a4dc31799ebf0bf2c6
- SHA512
  
  d6b58fa92a101fca37f5eeaa0fbb90fdff192df6d8d6b34718a1ec1c14a99037f6af0d082702a4f0163d53c59146132e7766bf0a4a25af9d148359a2cafd95aa
Score

10^/10

njrat hacked trojan
- njRAT/Bladabindi
  Widely used RAT written in .NET.
  trojan njrat
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

njrathackedtrojan

behavioral2