General
-
Target
NjRat 0.7D Danger Edition.exe
-
Size
7.9MB
-
Sample
220614-kkbafahah8
-
MD5
3f859b5022a581366df79bfa29300718
-
SHA1
af42979047b440f08284247a3c17e4b702985655
-
SHA256
91298665d8b5a232fe2716e2c8157e966818a8d607bdb2278e8a44a9466e9390
-
SHA512
3ccf088579a7f623d80a58fc93ba51d14d7024406984cb43cf1b59d5ef468612c683aa74b63741a7820a925e875ae7ec76ab2fbbbee5b2a521110e70a938956a
Static task
static1
Malware Config
Extracted
njrat
0.7d
MediaGet
OTFRANSESCOuOTkuFRANSESCOTA0Ljk2:MTc1MjQ=
e16ca4b3ba16d929041c508a1cd98a13
-
reg_key
e16ca4b3ba16d929041c508a1cd98a13
-
splitter
|'|'|
Targets
-
-
Target
NjRat 0.7D Danger Edition.exe
-
Size
7.9MB
-
MD5
3f859b5022a581366df79bfa29300718
-
SHA1
af42979047b440f08284247a3c17e4b702985655
-
SHA256
91298665d8b5a232fe2716e2c8157e966818a8d607bdb2278e8a44a9466e9390
-
SHA512
3ccf088579a7f623d80a58fc93ba51d14d7024406984cb43cf1b59d5ef468612c683aa74b63741a7820a925e875ae7ec76ab2fbbbee5b2a521110e70a938956a
-
Detect Neshta Payload
-
Modifies system executable filetype association
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Executes dropped EXE
-
Loads dropped DLL
-