General

  • Target

    01e4b7b1f942846a9dcb1568ac66a6aadcb57fa6e520cbd2c3b113f29b678e9c

  • Size

    16.4MB

  • Sample

    220708-v73y3sfab3

  • MD5

    e69e496668acd33f4e7a9e3f89ab1b9e

  • SHA1

    8fd18d430c1ea389b592778b49eae5b2ad33d3ac

  • SHA256

    01e4b7b1f942846a9dcb1568ac66a6aadcb57fa6e520cbd2c3b113f29b678e9c

  • SHA512

    112c263ce6eeabe3b9ee311bbc64b9c509b88ee88fed46eeb37dbd62264406a2d7e05ab627976817a1df10132d1591381954f3cc835883515428b5f70c94ab74

Malware Config

Extracted

Family

njrat

Version

0.7NC

Botnet

NYAN CAT

C2

milla.publicvm.com:5050

Mutex

222c4984f8074

Attributes
  • reg_key

    222c4984f8074

  • splitter

    @!#&^%$

Targets

    • Target

      01e4b7b1f942846a9dcb1568ac66a6aadcb57fa6e520cbd2c3b113f29b678e9c

    • Size

      16.4MB

    • MD5

      e69e496668acd33f4e7a9e3f89ab1b9e

    • SHA1

      8fd18d430c1ea389b592778b49eae5b2ad33d3ac

    • SHA256

      01e4b7b1f942846a9dcb1568ac66a6aadcb57fa6e520cbd2c3b113f29b678e9c

    • SHA512

      112c263ce6eeabe3b9ee311bbc64b9c509b88ee88fed46eeb37dbd62264406a2d7e05ab627976817a1df10132d1591381954f3cc835883515428b5f70c94ab74

    • njRAT/Bladabindi

      Widely used RAT written in .NET.

    • suricata: ET MALWARE Generic njRAT/Bladabindi CnC Activity (ll)

      suricata: ET MALWARE Generic njRAT/Bladabindi CnC Activity (ll)

MITRE ATT&CK Matrix

Tasks