njrat | f9af3deceabc2815dc6e35f2e3edf2bf7b6631fcdaa258b7e19e62a00b85d1e9 | Triage

Sharing

General

Target

4328-275-0x0000000000400000-0x000000000062B000-memory.dmp
Size

2.2MB
Sample

220930-m4gmnsecdr
MD5

fab166024e045673d240995e6e7e9fd5
SHA1

ffba042eb32edfcfd32994422f0187c0791867e7
SHA256

f9af3deceabc2815dc6e35f2e3edf2bf7b6631fcdaa258b7e19e62a00b85d1e9
SHA512

81aae56604e9adea28ff1e803e9c8f5ba8467ef469a4a3ab6ff2287efaa702e045a44f3061acfb8938861c10247d681fc1f1490649abdc4a2b5a8cd8aaa139a5
SSDEEP

384:2kLam4PanO4Y7pcdYGiTOCsPodxxM2AQk93vmhm7UMKmIEecKdbXTzm9bVhcaN6l:2y63vc7OQ2A/vMHTi9bD

Score

10^/10

njrat hacked

Malware Config

Extracted

Family

njrat

Version

v2.0

Botnet

HacKed

C2

45.155.165.74:7778

Mutex

Windows

Attributes

reg_key
Windows
splitter
|-F-|

Targets

- Target
  
  4328-275-0x0000000000400000-0x000000000062B000-memory.dmp
- Size
  
  2.2MB
- MD5
  
  fab166024e045673d240995e6e7e9fd5
- SHA1
  
  ffba042eb32edfcfd32994422f0187c0791867e7
- SHA256
  
  f9af3deceabc2815dc6e35f2e3edf2bf7b6631fcdaa258b7e19e62a00b85d1e9
- SHA512
  
  81aae56604e9adea28ff1e803e9c8f5ba8467ef469a4a3ab6ff2287efaa702e045a44f3061acfb8938861c10247d681fc1f1490649abdc4a2b5a8cd8aaa139a5
- SSDEEP
  
  384:2kLam4PanO4Y7pcdYGiTOCsPodxxM2AQk93vmhm7UMKmIEecKdbXTzm9bVhcaN6l:2y63vc7OQ2A/vMHTi9bD
Score

1^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2