Overview

overview

7

Static

static

1

njRAT 0.7d...on.exe

windows10-2004-x64

1

njRAT 0.7d...ip.exe

windows10-2004-x64

7

njRAT 0.7d...ck.exe

windows10-2004-x64

1

njRAT 0.7d...r1.exe

windows10-2004-x64

1

njRAT 0.7d...r2.exe

windows10-2004-x64

1

njRAT 0.7d...r3.exe

windows10-2004-x64

1

njRAT 0.7d...r4.exe

windows10-2004-x64

1

njRAT 0.7d...r5.exe

windows10-2004-x64

1

njRAT 0.7d...r6.exe

windows10-2004-x64

1

njRAT 0.7d...am.dll

windows10-2004-x64

1

njRAT 0.7d...ch.dll

windows10-2004-x64

1

njRAT 0.7d...un.exe

windows10-2004-x64

1

njRAT 0.7d...ic.dll

windows10-2004-x64

1

njRAT 0.7d...lg.dll

windows10-2004-x64

1

njRAT 0.7d...pw.dll

windows10-2004-x64

1

njRAT 0.7d...c2.dll

windows10-2004-x64

1

njRAT 0.7d...in.xml

windows10-2004-x64

1

njRAT 0.7d...ub.xml

windows10-2004-x64

1

njRAT 0.7d...et.dll

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    njRAT 0.7d Horror Edition.rar

  • Size

    13.3MB

  • Sample

    230316-3vbcasdd58

  • MD5

    16502247318413092781773c9a981c60

  • SHA1

    25a567988547a66a6a3acb3d73493259af7449ff

  • SHA256

    d9a826109c0b31043a6a74cbd1e15d1cb0c9138c9a8a823d6595eb6989f47dc9

  • SHA512

    d8f6132a626c8a811ae833e47d0266e3e8209367242240a29bd8c405e57c1abca99acd991090ef4941294404d76c330e8ce466e39546d02e72435c3c6e048aab

  • SSDEEP

    393216:rO4dX8z+7hCu1A/wK24a6Txu/1T5545lJ9l:rhNOohCyA/wK24u/H2jJ9l

Score
7/10

Malware Config

Targets

    • Target

      njRAT 0.7d Horror Edition/NjRat 0.7D Horror Edition.exe

    • Size

      15.4MB

    • MD5

      dd411913ab79512e94920f3bb8019334

    • SHA1

      463c4fd39c21be32970febd1447fb472b419c89d

    • SHA256

      bb35eddc6b3ccc8aae668176a3987be76ca66c3c0c01074e5ee9cd7d145ce6ce

    • SHA512

      60c2d87dafa3726e175ec48b1899f3256a1c884b35ed725469f28a403b7a928e67eab2413c187f746887ca588676c94f85b304553824afa9bff6b9805b495d2d

    • SSDEEP

      196608:/jTb2kYfaKqgAyoSxX3NYeOu2kYJBnnim//7uVtFZ03MtV0Poiv5m:X3JgA+9ecWBnnim//7w03M4Fv5m

    Score
    1/10
    behavioral1

    • Target

      njRAT 0.7d Horror Edition/Plugin/Clip.exe

    • Size

      13KB

    • MD5

      fd829592c5abc1361c2f5e81b2678019

    • SHA1

      91b6d23bc43332bb7fee1b2d924a5c26a86747e4

    • SHA256

      88b7a47f63f149d273015f4f6ce9ef8c5a731b6cf19db7a95220298603000b8c

    • SHA512

      4e3e3b3cbfc2c25ac23399d15dcb6e7b40e5572fe9e5e741152f20589cd94de390fe0bea4abfb53ff427c6dec366d41a43a3a67ccdbb34c139f781be0b6b6c34

    • SSDEEP

      384:Gr+hl2K2kTjnbkHWUWb1Lc4WrYk90/RxLKNrw:GrYSWUWbJ5//KNrw

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral2

    • Target

      njRAT 0.7d Horror Edition/Plugin/Lock.exe

    • Size

      16KB

    • MD5

      683bcb1f86f4410931abe39a63eb7057

    • SHA1

      d338aac5ff479fc94d3c840e862665de1dac8c8f

    • SHA256

      c9f03a39789f7322ae43604db6ce7da86765ad4b13207091683cf47bdea8de12

    • SHA512

      60b596947d93fdb196fcf338af92d26cdd82396283316352ead078ce1a85943bb85264901318f7061e6b0e49058ace521831a9275c025526373d9168c757cdd2

    • SSDEEP

      384:wi9N5yF4C0n7QLweis5rul02mXlBbVVaXI:wi3kWv7UB92KaXI

    Score
    1/10
    behavioral3

    • Target

      njRAT 0.7d Horror Edition/Plugin/Screamer1.exe

    • Size

      844KB

    • MD5

      8cac1595b184f66d7a122af38d5dfe71

    • SHA1

      e0bc0162472edf77a05134e77b540663ac050ab6

    • SHA256

      00201a2fd4916193c9c7bbba7be6a77fa5876085480b67da4e1228fd8b23ae5f

    • SHA512

      88d3753ce73bbf95ee1fdbdff21eb9331e59ca92cfa5c489f141c07dc90871e3032e331c9dd77b1fec4522add3ac25c51d5c699d7801a5343dd2ae447c60f8f8

    • SSDEEP

      24576:Twbdh4Y2uoLtciBtgFD3O7iPTr8pYocr6x:T212uohceaYg

    Score
    1/10
    behavioral4

    • Target

      njRAT 0.7d Horror Edition/Plugin/Screamer2.exe

    • Size

      345KB

    • MD5

      8efb7339fe13cf8cea9f6445776655c0

    • SHA1

      081afd73c757c83825cf1e8ed4a4eab259d23b97

    • SHA256

      c1badbacd2abe44fe4e8685c8eee7e983bf8b6780cfca03ae31f8fcebc98b1fb

    • SHA512

      2a37e74aeff17b4f435d02a30019a017a4ff4fa29fc898229f6195876f53b38154c063cf052deebcc06785650f875d67eeb0de372a76df3c4e71bd4fc0392956

    • SSDEEP

      6144:1sp3sCQ1AWnK1NOZ2l8iQojWaCZ0pak0l1aNmN4/nzNRH91FHlHH:1Ii1Az18YDQ1aq0ok0d+nzN

    Score
    1/10
    behavioral5

    • Target

      njRAT 0.7d Horror Edition/Plugin/Screamer3.exe

    • Size

      280KB

    • MD5

      dedabad13c1c4cc92c4ed2122473eb8a

    • SHA1

      a13385641ddcbdc371dce3607381883d52ed9822

    • SHA256

      5dc4f19b34a738b4eef99c1229b2c7e7492040819d92ddbbf52bbde2a600c2ed

    • SHA512

      45b66665cb3e484c82775c9972f444b1d8fe6f7ef5a55185a3c071f84e9f5dd2a039c9f9e26392e950585cbf965b987df9c789106bddcb35ee55ad0ff91b190b

    • SSDEEP

      6144:gk8SnpZqjGNklsppH1eSqkeJRH91FHlHH:gvgZqJmTeSqkeJ

    Score
    1/10
    behavioral6

    • Target

      njRAT 0.7d Horror Edition/Plugin/Screamer4.exe

    • Size

      961KB

    • MD5

      4723c3c04794c09bbcb6e03f48440f15

    • SHA1

      a5ef69c9dc9eacc2099d9c239146a0e360f1837f

    • SHA256

      0d635f035cdb2fd3afda768cd631481ff980957b614a3cf3fca6c592c6c06470

    • SHA512

      5b68e1cd3d6bb85b5f449014cc288423faea76ff0ecf8834047dac1ed6e84c4d858a7ed23abe3625d781391f636893736bf5c00474ad0995e75611c1557c5c4a

    • SSDEEP

      24576:V1ubnylucMp90zjW7tDVF/ZeHr7aNnX/Xq7PU:V4bnylucasuDNnX/q

    Score
    1/10
    behavioral7

    • Target

      njRAT 0.7d Horror Edition/Plugin/Screamer5.exe

    • Size

      997KB

    • MD5

      28aaac578be4ce06cb695e4f927b4302

    • SHA1

      880ab0560b81e05e920f9ec1d6c0ecf5e04eaa7e

    • SHA256

      8929d3b749ff91527b8e407eff6bde4bb0bb27739313b5c0db0434cbf700dbfc

    • SHA512

      068698bda0543c773b36830f6760456e40e9046d9d20089ad88cb646ef5c7bd6c6716c6d59cfc7abd5bffb9129f5a7076e2f9c9b321795f224923f00b7b91374

    • SSDEEP

      24576:xcWLYmbwnSTHLmB1wS7pmYSOryHwC6FEUQ09E4a66:xFsoHSXw2S7wCqJ3

    Score
    1/10
    behavioral8

    • Target

      njRAT 0.7d Horror Edition/Plugin/Screamer6.exe

    • Size

      583KB

    • MD5

      320b1115164e8b5e1316d86eb29cd299

    • SHA1

      bc046d8b14359a7a2bebdecbb819e76c47d84d1b

    • SHA256

      d88f5b00da5f05ab7f55fd7c414bb56aaf47e9f51365aaabd71f3ace3cc77523

    • SHA512

      fab558cf31aa79caf8e4f6e5649e4e484de3e29bae1386aa61749b70e8c791d74b01fa964501d4755c7688d0420e932f30e36699a2fe4488fae82ee23558afd0

    • SSDEEP

      12288:Y7ogwYqbE3DMuR6BlTTnn9ZOKp0Ac9fEmtdyaukNU9ad:1gIcou0Tnnjr2fEmDNh

    Score
    1/10
    behavioral9

    • Target

      njRAT 0.7d Horror Edition/Plugin/cam.dll

    • Size

      99KB

    • MD5

      8ce3060686462fc72ece2701caa13e3b

    • SHA1

      19fc9892200de4db332ddd0c14b4b6fd9a35ccd4

    • SHA256

      881d5afb9aa4799c73e75dcd28587dba85dd844e4137287ea48c6b66525e2638

    • SHA512

      ef38e00b054240a0d4747bfd79db860015ed027735c360de58af6889a69482109ccf74770608a2750542457ac38aa79367431ff6ca77fae44d7e3a7023f33a17

    • SSDEEP

      3072:31IL2SeOPGmBUMqtZabredepzZxgUPWeJP3:w2Sm/MqueepzZxgQW

    Score
    1/10
    behavioral10

    • Target

      njRAT 0.7d Horror Edition/Plugin/ch.dll

    • Size

      44KB

    • MD5

      11fde8a47647c3bc98d57f3a9f3a97a3

    • SHA1

      e813c17973e77b7aa22b9f539c3c97c624acafb1

    • SHA256

      7032cb496f866ec1c9304f2c3cd8859472168838a11aba1571f51875a75074af

    • SHA512

      1401f40569db7679014ab282477a5560b3bc6f51284e501e0e878881522db102b448566bae50ab6c1027a196de410a9ac8770dfa2208d14e5dfcc3c05e766763

    • SSDEEP

      768:BZXGgq41SLdRX0vTeAMtNDkpUrpDwxRcNDfF6a2Txj+izh8RP3ABkP0:72gq41SLdRX0vTeAqNoC9kxmRfgrCs83

    Score
    1/10
    behavioral11

    • Target

      njRAT 0.7d Horror Edition/Plugin/fun.dll

    • Size

      8KB

    • MD5

      ddce53e6a021aa8e146d9fce35e97e53

    • SHA1

      7a4c69888e821e1d775c899ec5b3fdab267c7fbd

    • SHA256

      57b66a81716e1737e5b8ecff2c269f00e2ca6ffbff88960e973c02f5800037cc

    • SHA512

      a644892e51a5f09b35b3a89fee6031eeb92eb3ed5e5d05b8e06a96f0348305366f211ee959f94aaedb6f0c59608e49a1c2efb157f09cf520c43fe5455abfee15

    • SSDEEP

      192:qum1qx/rD8107fvhIW1PnaLyLlYe2/Ya7f:q29rD80fvrnamL7F

    Score
    1/10
    behavioral12

    • Target

      njRAT 0.7d Horror Edition/Plugin/mic.dll

    • Size

      77KB

    • MD5

      9b376f0d44995ca15d43f7943a602fb2

    • SHA1

      18a2bb7d13836256bd5f39089203f18d740669d5

    • SHA256

      27528a77e27d02aadecabfdf658b2da638bb0ca2f2c60bdd9d0fd5338c1fc346

    • SHA512

      4dfb0c49816e0d0c2f7d0d76081725bd48d3713506ec51ac6c06ae7092908d14e3683d707d6f332505163fb0ade0ee6b50a355cd69c25725e829ebb23a3e93b2

    • SSDEEP

      1536:ZAwSxproATOoeQHshYNR1zTTxqPbKhOCjXKem:TSxpr/KoemAYxTTxqj

    Score
    1/10
    behavioral13

    • Target

      njRAT 0.7d Horror Edition/Plugin/plg.dll

    • Size

      65KB

    • MD5

      c179e212316f26ce9325a8d80d936666

    • SHA1

      14d08b3cda60341d1e9187fc14bd64ebefe4a5b6

    • SHA256

      13043521ed6876edf2736fc46a7c49e6b639cfa7a866ca11de26f119796cd521

    • SHA512

      1b5eb687a9932c82ab2e655dbc5df8ba667a023e7568dbbd13c503a54661763193bde11937f87e2e09b88d770c8357eda07589d526e6103db058038e3ce3b750

    • SSDEEP

      768:rVRKgRFKn3N5U2jNGUyXWI9Yi1s0sbtAEsz8CjBMiPs2T:pR3R895Npyhn1sBbtPsz8C9P

    Score
    1/10
    behavioral14

    • Target

      njRAT 0.7d Horror Edition/Plugin/pw.dll

    • Size

      284KB

    • MD5

      ac43720c43dcf90b2d57d746464ad574

    • SHA1

      eae39df1c717ca74f6f04d5ca8478ea55145535a

    • SHA256

      ca6367d1ab873a55ced13d7024c530bbe4a6a703813225233e59041c7ce14eaa

    • SHA512

      9082b3cd8b36031256923c8f2bed628e9331129bbf09d111d9d02268a49e493248e5638ddee5b02da66e9159a608f8f26499ca0f736d6a369a30f71950c60d40

    • SSDEEP

      6144:QxY714e31bXJVFJmShoCKFdZ3aDGjXsCUjguhyUOMO:7ZxJ/JmSG9T8CEgdM

    Score
    1/10
    behavioral15

    • Target

      njRAT 0.7d Horror Edition/Plugin/sc2.dll

    • Size

      46KB

    • MD5

      2d65bc3bff4a5d31b59f5bdf6e6311d7

    • SHA1

      43962fbeb93fc267fb1c7036a12b8c5d6f40c28a

    • SHA256

      010b1ec566be774a2d12146f9826aa31fd7eb6ffe7b45ce5e572b2d8c7f815c3

    • SHA512

      b210d447cc9b4b89402a2a1d3d5e9cfe13ae897c47094be4110ed3aac109152c8a45ec138f73b703e7d3799934234cba4ca3f2439b3dd193a4cec671b9edaa6a

    • SSDEEP

      768:mtAX1G0UYRxIDbYDGN5/eoK79QlRfe2AfgFTMBku2T:mtAFZUYA/uW2x9CJe2BFQB

    Score
    1/10
    behavioral16

    • Target

      njRAT 0.7d Horror Edition/Stub/Admin.manifest

    • Size

      498B

    • MD5

      ae08a3b3c72a07aa6b5babea340edc36

    • SHA1

      cd758742b1872eddf9ffe0bc715097c467ad7f64

    • SHA256

      8ea63e8ae4a6ca4769da44b9d934dca248c2ffc0169ae251bd0f6eadca457f24

    • SHA512

      0cbd2abf49b1155ce2c0f4645e20e1c40c8dd2d78f43276e01b14d5bdf3ba0ea52bde985c215868fdfe3ec61e6e4f83555394ce5ef3ee82a928bd26e413a0fcc

    Score
    1/10
    behavioral17

    • Target

      njRAT 0.7d Horror Edition/Stub/Stub.manifest

    • Size

      487B

    • MD5

      4d18ac38a92d15a64e2b80447b025b7e

    • SHA1

      5c34374c2dd5afa92e0489f1d6f86dde616aca6c

    • SHA256

      835a00d6e7c43db49ae7b3fa12559f23c2920b7530f4d3f960fd285b42b1efb5

    • SHA512

      72be79acd72366b495e0f625a50c9bdf01047bcf5f9ee1e3bdba10dab7bd721b0126f429a91d8c80c2434e8bc751defdf4c05bdc09d26a871df1bb2e22e923bf

    Score
    1/10
    behavioral18

    • Target

      njRAT 0.7d Horror Edition/WinMM.Net.dll

    • Size

      43KB

    • MD5

      d4b80052c7b4093e10ce1f40ce74f707

    • SHA1

      2494a38f1c0d3a0aa9b31cf0650337cacc655697

    • SHA256

      59e2ac1b79840274bdfcef412a10058654e42f4285d732d1487e65e60ffbfb46

    • SHA512

      3813b81f741ae3adb07ae370e817597ed2803680841ccc7549babb727910c7bff4f8450670d0ca19a0d09e06f133a1aaefecf5b5620e1b0bdb6bcd409982c450

    • SSDEEP

      768:LyasDzF2TDSemqD9tGI+ffwj2Au0LVpqmf7KxcOOrYCPTxqPb85:LyaXKemqD9tGI+ffwj2Au0LVpq4KWrlv

    Score
    1/10
    behavioral19

MITRE ATT&CK Enterprise v6

Tasks