Overview

overview

10

Static

static

10

0ca9fee2e1...07.exe

windows7_x64

8

0ca9fee2e1...07.exe

windows10-2004_x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0ca9fee2e1444913a937454e8ea5f0539e446246a9097a42dee4279b1bae2c07

  • Size

    37KB

  • Sample

    220529-27t5hahedn

  • MD5

    40154b9ad674d822f91993a2cf4e392e

  • SHA1

    e92be4fe50e5d9656570a7c47cbf9449df52d6b9

  • SHA256

    0ca9fee2e1444913a937454e8ea5f0539e446246a9097a42dee4279b1bae2c07

  • SHA512

    057da7897bd97985f37ed489de774ae1c71bf3bd802b72b6de9d723eaec2247fbb70964a4688ffa4c257f2cbe30c1e946a49e5422621a5272c3057b5fc901219

Score
10/10
njratsystemevasion

Malware Config

Extracted

Family

njrat

Version

im523

Botnet

System

C2

adeldu122.ddns.net:1994

Mutex

e41e2124d09bef2023f565531799062f

Attributes
  • reg_key

    e41e2124d09bef2023f565531799062f

  • splitter

    |'|'|

Targets

    • Target

      0ca9fee2e1444913a937454e8ea5f0539e446246a9097a42dee4279b1bae2c07

    • Size

      37KB

    • MD5

      40154b9ad674d822f91993a2cf4e392e

    • SHA1

      e92be4fe50e5d9656570a7c47cbf9449df52d6b9

    • SHA256

      0ca9fee2e1444913a937454e8ea5f0539e446246a9097a42dee4279b1bae2c07

    • SHA512

      057da7897bd97985f37ed489de774ae1c71bf3bd802b72b6de9d723eaec2247fbb70964a4688ffa4c257f2cbe30c1e946a49e5422621a5272c3057b5fc901219

    Score
    8/10
    evasion
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Modify Existing Service

1
T1031

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks