Overview

overview

10

Static

static

10

bDQe.exe

windows7-x64

6

bDQe.exe

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    bDQe.exe

  • Size

    36KB

  • Sample

    220801-gvv6tadad2

  • MD5

    1e18f918760afacea60a98304848f185

  • SHA1

    dedc9785c83e4e7fc6a01383535334ca0d96a3a4

  • SHA256

    647139ff592b78e0139f8286c276b9a604a62636d8c36bbc1bf6052fe363c39d

  • SHA512

    757cb46bb5e33fa1a5f4cadc15228bc9d397d44e3ea1155bd1b360be81cc341083fe36a70085f1fb328dbd6057d996e89fda236b34264b3fa473b5a0a237ebaf

Score
10/10
njrathacked

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

HacKed

C2

https://pastebin.com/raw/3MX23iHQ:5502

Mutex

6a2634340fbf8a0a2c038c6263d49fd1

Attributes
  • reg_key

    6a2634340fbf8a0a2c038c6263d49fd1

  • splitter

    |'|'|

Targets

    • Target

      bDQe.exe

    • Size

      36KB

    • MD5

      1e18f918760afacea60a98304848f185

    • SHA1

      dedc9785c83e4e7fc6a01383535334ca0d96a3a4

    • SHA256

      647139ff592b78e0139f8286c276b9a604a62636d8c36bbc1bf6052fe363c39d

    • SHA512

      757cb46bb5e33fa1a5f4cadc15228bc9d397d44e3ea1155bd1b360be81cc341083fe36a70085f1fb328dbd6057d996e89fda236b34264b3fa473b5a0a237ebaf

    Score
    6/10

    • Legitimate hosting services abused for malware hosting/C2

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Web Service

1
T1102

Impact

Tasks