Overview

overview

10

Static

static

10

1992-55-0x...ry.exe

windows7-x64

10

1992-55-0x...ry.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1992-55-0x0000000000340000-0x0000000000352000-memory.dmp

  • Size

    72KB

  • Sample

    220901-z76r7abdbr

  • MD5

    1b8090f3b313a788d587e605d6e81280

  • SHA1

    419d51474faa9b12b9061a47455d909ff9deb7cb

  • SHA256

    db8a3ba6a714f4bf5d796edefd48f8af46c7ddb23593ad3fd803dcc786e7c1a7

  • SHA512

    d37c0578487d7e1768b00f8fa80d25e1dff18efe43b71e0acae1dcec593bbad86ff36294982b27f7a5741a812b1b373b6fc10330439ffe2ac11da50d9aaeb4c8

  • SSDEEP

    384:88ZySa33VarE8yTNJFqfQYMEnwpai0+dzEIij+ZsNO3PlpJKkkjh/TzF7pWn+mge:86xq3MY5TnFqfpMpLuXQ/orq+L

Score
10/10
njrathackedtrojan

Malware Config

Extracted

Family

njrat

Version

Njrat 0.7 Golden By Hassan Amiri

Botnet

HacKed

C2

0.tcp.eu.ngrok.io:13489

Mutex

Windows Update

Attributes
  • reg_key

    Windows Update

  • splitter

    |Hassan|

Targets

    • Target

      1992-55-0x0000000000340000-0x0000000000352000-memory.dmp

    • Size

      72KB

    • MD5

      1b8090f3b313a788d587e605d6e81280

    • SHA1

      419d51474faa9b12b9061a47455d909ff9deb7cb

    • SHA256

      db8a3ba6a714f4bf5d796edefd48f8af46c7ddb23593ad3fd803dcc786e7c1a7

    • SHA512

      d37c0578487d7e1768b00f8fa80d25e1dff18efe43b71e0acae1dcec593bbad86ff36294982b27f7a5741a812b1b373b6fc10330439ffe2ac11da50d9aaeb4c8

    • SSDEEP

      384:88ZySa33VarE8yTNJFqfQYMEnwpai0+dzEIij+ZsNO3PlpJKkkjh/TzF7pWn+mge:86xq3MY5TnFqfpMpLuXQ/orq+L

    Score
    10/10
    njrathackedtrojan

    • njRAT/Bladabindi

      Widely used RAT written in .NET.

      trojannjrat
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks