njrat | a3c94a623f214f976d31b7052a6bbd4068f914827bf5559de6d21fe4c89cfcc9 | Triage

Sharing

General

Target

a3c94a623f214f976d31b7052a6bbd4068f914827bf5559de6d21fe4c89cfcc9
Size

315KB
Sample

221124-ezmzwscb2s
MD5

f58a14ec72c2266bbadcc01e1d2190b6
SHA1

3d9d8575efea3712d68ef0c5dc02c9cc7fb41831
SHA256

a3c94a623f214f976d31b7052a6bbd4068f914827bf5559de6d21fe4c89cfcc9
SHA512

24f588c123800b74aa4fbfd3bedf31b6214285cca410847f66dfbe911aca604556353111df89330a8cd1e5a1ccfcc242b4293bf26532f5efc93dd08f9d4fb24f
SSDEEP

6144:QK3cJk+mRH4IqOQlLSBC0+eekTdFyDPcka:BI4UAvODP

Score

10^/10

njrat evasion trojan

Malware Config

Targets

- Target
  
  a3c94a623f214f976d31b7052a6bbd4068f914827bf5559de6d21fe4c89cfcc9
- Size
  
  315KB
- MD5
  
  f58a14ec72c2266bbadcc01e1d2190b6
- SHA1
  
  3d9d8575efea3712d68ef0c5dc02c9cc7fb41831
- SHA256
  
  a3c94a623f214f976d31b7052a6bbd4068f914827bf5559de6d21fe4c89cfcc9
- SHA512
  
  24f588c123800b74aa4fbfd3bedf31b6214285cca410847f66dfbe911aca604556353111df89330a8cd1e5a1ccfcc242b4293bf26532f5efc93dd08f9d4fb24f
- SSDEEP
  
  6144:QK3cJk+mRH4IqOQlLSBC0+eekTdFyDPcka:BI4UAvODP
Score

10^/10

evasion njrat trojan
- njRAT/Bladabindi
  Widely used RAT written in .NET.
  trojan njrat
- Modifies Windows Firewall
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

njratevasiontrojan