General

  • Target

    08a49749587943bcd5c8253c71160271a7c4e8fa70dfecb8de768db62d7ba827

  • Size

    67KB

  • Sample

    221003-b2ff2scdfk

  • MD5

    66b4be0d76030c04d038d4eebeef2840

  • SHA1

    6bc2264465c19831abc465c1858885adef57ad1d

  • SHA256

    08a49749587943bcd5c8253c71160271a7c4e8fa70dfecb8de768db62d7ba827

  • SHA512

    f83cd099db7d8c140322f9d2de6792d66246213b942c1b1542954f6f99d4c7686f7b960ded42375d093826298676eeaaf6aa9cb68b48c2f0b96cd9e7391615fb

  • SSDEEP

    1536:+WVFvTccWkWRxTvA/7yHL4RSk9thiVrZE/7gKjM:+QTccWbTIur4Y6MVrC/VQ

Score
10/10

Malware Config

Targets

    • Target

      08a49749587943bcd5c8253c71160271a7c4e8fa70dfecb8de768db62d7ba827

    • Size

      67KB

    • MD5

      66b4be0d76030c04d038d4eebeef2840

    • SHA1

      6bc2264465c19831abc465c1858885adef57ad1d

    • SHA256

      08a49749587943bcd5c8253c71160271a7c4e8fa70dfecb8de768db62d7ba827

    • SHA512

      f83cd099db7d8c140322f9d2de6792d66246213b942c1b1542954f6f99d4c7686f7b960ded42375d093826298676eeaaf6aa9cb68b48c2f0b96cd9e7391615fb

    • SSDEEP

      1536:+WVFvTccWkWRxTvA/7yHL4RSk9thiVrZE/7gKjM:+QTccWbTIur4Y6MVrC/VQ

    Score
    10/10
    • njRAT/Bladabindi

      Widely used RAT written in .NET.

    • Executes dropped EXE

    • Modifies Windows Firewall

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

MITRE ATT&CK Enterprise v6

Tasks