njrat | 8a637e0a8c13c762b8347387fab064d14dfaae22cae9b05faf74f36880a529bf | Triage

Sharing

General

Target

8a637e0a8c13c762b8347387fab064d14dfaae22cae9b05faf74f36880a529bf
Size

409KB
Sample

221126-ve73bshh26
MD5

f6de96d41cc2a450e63cbbbc87b940c6
SHA1

330da7256bbb806cfbf4853448849c22424d9719
SHA256

8a637e0a8c13c762b8347387fab064d14dfaae22cae9b05faf74f36880a529bf
SHA512

8084b9cd8f7b65c8c464130d342097bd1bc313d702518aeb57a87dcd5a5de61164c1ebe53e84c537a32e00aa97e1f359ddffc0a5ba01854463c3a65667f7ad00
SSDEEP

12288:plgEN/GPqEDwnjf0W2rZo5bIxk6v8XGPgEc:cEN/GPqEDwnjf92rZo5bqfv4t

Score

10^/10

njrat evasion trojan

Malware Config

Targets

- Target
  
  8a637e0a8c13c762b8347387fab064d14dfaae22cae9b05faf74f36880a529bf
- Size
  
  409KB
- MD5
  
  f6de96d41cc2a450e63cbbbc87b940c6
- SHA1
  
  330da7256bbb806cfbf4853448849c22424d9719
- SHA256
  
  8a637e0a8c13c762b8347387fab064d14dfaae22cae9b05faf74f36880a529bf
- SHA512
  
  8084b9cd8f7b65c8c464130d342097bd1bc313d702518aeb57a87dcd5a5de61164c1ebe53e84c537a32e00aa97e1f359ddffc0a5ba01854463c3a65667f7ad00
- SSDEEP
  
  12288:plgEN/GPqEDwnjf0W2rZo5bIxk6v8XGPgEc:cEN/GPqEDwnjf92rZo5bqfv4t
Score

10^/10

evasion njrat trojan
- njRAT/Bladabindi
  Widely used RAT written in .NET.
  trojan njrat
- Modifies Windows Firewall
  evasion
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

njratevasiontrojan