njrat | fd004f46114c145fbf9836bd08ca537601a1dce54109f252fd956da733fad033 | Triage

Sharing

General

Target

fd004f46114c145fbf9836bd08ca537601a1dce54109f252fd956da733fad033
Size

32KB
Sample

221128-qaspmaae8v
MD5

b3760f0c5d864515da65f2d921890e3b
SHA1

473dcfe3ef6bfcddef914afdd2fb7cfc48e44c70
SHA256

fd004f46114c145fbf9836bd08ca537601a1dce54109f252fd956da733fad033
SHA512

bb370a7113a7ed9c288ea92132377b82035e41c9de957b3d9ff9b90192b5e0a4661bc28ee1901ce82e4c1f6bee6c5980cc2a2e86df6adce6764ddc15ac51bc16
SSDEEP

768:X2GpNg/pscKeQYBPkt6pye6XuSE2fRHnr:X2GpkpsheQ2ZEe6XuSxftr

Score

10^/10

njrat victime trojan

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

victime

C2

achiille1607b.no-ip.biz:1177

Mutex

b20deb8fe0a7d96f6e67cc0ba512ac46

Attributes

reg_key
b20deb8fe0a7d96f6e67cc0ba512ac46
splitter
|'|'|

Targets

- Target
  
  fd004f46114c145fbf9836bd08ca537601a1dce54109f252fd956da733fad033
- Size
  
  32KB
- MD5
  
  b3760f0c5d864515da65f2d921890e3b
- SHA1
  
  473dcfe3ef6bfcddef914afdd2fb7cfc48e44c70
- SHA256
  
  fd004f46114c145fbf9836bd08ca537601a1dce54109f252fd956da733fad033
- SHA512
  
  bb370a7113a7ed9c288ea92132377b82035e41c9de957b3d9ff9b90192b5e0a4661bc28ee1901ce82e4c1f6bee6c5980cc2a2e86df6adce6764ddc15ac51bc16
- SSDEEP
  
  768:X2GpNg/pscKeQYBPkt6pye6XuSE2fRHnr:X2GpkpsheQ2ZEe6XuSxftr
Score

10^/10

njrat victime trojan
- njRAT/Bladabindi
  Widely used RAT written in .NET.
  trojan njrat
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

njratvictimetrojan

behavioral2