njrat | eb544d2c62155cea869be4694b8e63b62021042898b89e4a2cd63d9b2c9d5181 | Triage

Submit
Reports

Overview

overview

Static

static

eb544d2c62...81.exe

windows7-x64

eb544d2c62...81.exe

windows10-2004-x64

5

Sharing

General

Target

eb544d2c62155cea869be4694b8e63b62021042898b89e4a2cd63d9b2c9d5181
Size

120KB
Sample

221130-xd8ctahd8w
MD5

d83c756ecce399c30f15a014d02d2851
SHA1

398025442f70518f8be639173d90ebdf1e6cecd7
SHA256

eb544d2c62155cea869be4694b8e63b62021042898b89e4a2cd63d9b2c9d5181
SHA512

f0e5d50d41e532688280b1d83bb2fea7fa32ea9895e0b3e65741d0553b11e95256db0293e9bb5090abeea2a25e61af303cd0345deb999ab78b8f8fa689895ee9
SSDEEP

3072:56Z/RVs8BgEpmZAYNqfbcYmbRUX41uiD:5c/7fbfdxi

Score

10^/10

njrat trojan

Static task

static1

Behavioral task

behavioral1

Sample

eb544d2c62155cea869be4694b8e63b62021042898b89e4a2cd63d9b2c9d5181.exe

Resource

win7-20221111-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

eb544d2c62155cea869be4694b8e63b62021042898b89e4a2cd63d9b2c9d5181.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  eb544d2c62155cea869be4694b8e63b62021042898b89e4a2cd63d9b2c9d5181
- Size
  
  120KB
- MD5
  
  d83c756ecce399c30f15a014d02d2851
- SHA1
  
  398025442f70518f8be639173d90ebdf1e6cecd7
- SHA256
  
  eb544d2c62155cea869be4694b8e63b62021042898b89e4a2cd63d9b2c9d5181
- SHA512
  
  f0e5d50d41e532688280b1d83bb2fea7fa32ea9895e0b3e65741d0553b11e95256db0293e9bb5090abeea2a25e61af303cd0345deb999ab78b8f8fa689895ee9
- SSDEEP
  
  3072:56Z/RVs8BgEpmZAYNqfbcYmbRUX41uiD:5c/7fbfdxi
Score

10^/10

njrat trojan
- njRAT/Bladabindi
  Widely used RAT written in .NET.
  trojan njrat
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy