General

  • Target

    FB5AE07416C69F39688E9A1CAF6878E1DF8EBFA0F99F9.exe

  • Size

    1.7MB

  • Sample

    220731-ztvsrshcap

  • MD5

    e23504a2758409735985e9d63e6406c1

  • SHA1

    d9446859876c9979c000feaf1a588950abc7874d

  • SHA256

    fb5ae07416c69f39688e9a1caf6878e1df8ebfa0f99f9083f5961584813ae609

  • SHA512

    0b78e39d8cd21d68514a901bf39e687d72c8b3cd51d2d3ee06bb4dbb6bc1167abd034fd6b1509e4818016a4ee183951e4e38bd81b5ef8f96109481351d22a3c5

Score
10/10

Malware Config

Extracted

Family

njrat

Version

0.7NC

Botnet

NYAN CAT

C2

milla.publicvm.com:5050

Mutex

dabd698cf62

Attributes
  • reg_key

    dabd698cf62

  • splitter

    @!#&^%$

Targets

    • Target

      FB5AE07416C69F39688E9A1CAF6878E1DF8EBFA0F99F9.exe

    • Size

      1.7MB

    • MD5

      e23504a2758409735985e9d63e6406c1

    • SHA1

      d9446859876c9979c000feaf1a588950abc7874d

    • SHA256

      fb5ae07416c69f39688e9a1caf6878e1df8ebfa0f99f9083f5961584813ae609

    • SHA512

      0b78e39d8cd21d68514a901bf39e687d72c8b3cd51d2d3ee06bb4dbb6bc1167abd034fd6b1509e4818016a4ee183951e4e38bd81b5ef8f96109481351d22a3c5

    Score
    10/10
    • njRAT/Bladabindi

      Widely used RAT written in .NET.

MITRE ATT&CK Matrix

Tasks