njrat | fa26cc43625d08ad545d1deeb0b458272eeb1837ea3f9a7aa69990e532c0caac | Triage

Sharing

General

Target

fa26cc43625d08ad545d1deeb0b458272eeb1837ea3f9a7aa69990e532c0caac
Size

23KB
Sample

221003-aqejyaacfq
MD5

4523e4a7a2ea3603cdd9192e784ae5f0
SHA1

b653dfee3b0c95d4477db579583bde29a0fe4639
SHA256

fa26cc43625d08ad545d1deeb0b458272eeb1837ea3f9a7aa69990e532c0caac
SHA512

0ef746b0beeaab8974282a9a1c7c516620030a73d97386bf069fc9b83d178b729710db7e39b52fe2fb1b71159c3522b57d0b180973e4d749caa54dfa3ebce962
SSDEEP

384:VoWtkEwn65rgjAsGipk53D16IgXakhbZD0mRvR6JZlbw8hqIusZzZca:a7O89p9rRpcnu8

Score

10^/10

njrat hacked trojan

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

HacKed

C2

23.105.131.151:1604

Mutex

01ef0f1b59982e9471c37c789cc16e55

Attributes

reg_key
01ef0f1b59982e9471c37c789cc16e55
splitter
|'|'|

Targets

- Target
  
  fa26cc43625d08ad545d1deeb0b458272eeb1837ea3f9a7aa69990e532c0caac
- Size
  
  23KB
- MD5
  
  4523e4a7a2ea3603cdd9192e784ae5f0
- SHA1
  
  b653dfee3b0c95d4477db579583bde29a0fe4639
- SHA256
  
  fa26cc43625d08ad545d1deeb0b458272eeb1837ea3f9a7aa69990e532c0caac
- SHA512
  
  0ef746b0beeaab8974282a9a1c7c516620030a73d97386bf069fc9b83d178b729710db7e39b52fe2fb1b71159c3522b57d0b180973e4d749caa54dfa3ebce962
- SSDEEP
  
  384:VoWtkEwn65rgjAsGipk53D16IgXakhbZD0mRvR6JZlbw8hqIusZzZca:a7O89p9rRpcnu8
Score

10^/10

njrat hacked trojan
- njRAT/Bladabindi
  Widely used RAT written in .NET.
  trojan njrat
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

njrathackedtrojan

behavioral2