General

  • Target

    705b8076a1da79799d35f488978106c4d891feca0b16c49ed340ca49bc308789

  • Size

    37KB

  • Sample

    220701-gprlfagfb9

  • MD5

    4ecaf978aa0fc4ca8b10f495b11bef2d

  • SHA1

    445d5d2caf4fe6768ddff5c14c96813feff1b734

  • SHA256

    705b8076a1da79799d35f488978106c4d891feca0b16c49ed340ca49bc308789

  • SHA512

    78460279d176f788d88b4fc3b3ecf6522d00bac3c96a01391ec2f8517ad5b963dc2d1260a2755d7bb476871bfc0b5a9c5e6820b7c69764ed57a166355e60a9df

Score
10/10

Malware Config

Extracted

Family

njrat

Version

im523

Botnet

Hacked

C2

royleew.hopto.org:3333

Mutex

806c6a98cb6c08f10fb89e185172381a

Attributes
  • reg_key

    806c6a98cb6c08f10fb89e185172381a

  • splitter

    |'|'|

Targets

    • Target

      705b8076a1da79799d35f488978106c4d891feca0b16c49ed340ca49bc308789

    • Size

      37KB

    • MD5

      4ecaf978aa0fc4ca8b10f495b11bef2d

    • SHA1

      445d5d2caf4fe6768ddff5c14c96813feff1b734

    • SHA256

      705b8076a1da79799d35f488978106c4d891feca0b16c49ed340ca49bc308789

    • SHA512

      78460279d176f788d88b4fc3b3ecf6522d00bac3c96a01391ec2f8517ad5b963dc2d1260a2755d7bb476871bfc0b5a9c5e6820b7c69764ed57a166355e60a9df

    Score
    8/10

MITRE ATT&CK Matrix ATT&CK v6

Persistence

Modify Existing Service

1
T1031

Tasks