njrat | 856bdf33cc81ffff8d23799e11e64cd92a221857dd902054da267499204884d3 | Triage

Sharing

General

Target

0fe9db2d2771eeec1f3596dc025453cc.bin
Size

17KB
Sample

230323-bc7t1aed9t
MD5

8e954006ecff3e3356aaa1265436cfd0
SHA1

a5eeab74ee65ced1c95b1e4ed69148191ab80f5c
SHA256

856bdf33cc81ffff8d23799e11e64cd92a221857dd902054da267499204884d3
SHA512

b478786a3a3d9f30a8bd1b54ce00e958522b368f0ba20edeae40935065989c88543f0af8cd4bb9f599845cf02b87d247850ac03ee1ca3c4f4b7aa73ea0d2004e
SSDEEP

384:yTfiNZ8cQJoZj8vcJpbSRtA+2R6IhC4xvAzRhM1iYZ5J4287ftRZ:yeNZ8r0ZbSR8hLxIlhM1RZ7428jbZ

Score

10^/10

njrat negrotanka666

Malware Config

Extracted

Family

njrat

Version

Njrat 0.7 Golden By Hassan Amiri

Botnet

negrotanka666

C2

default-flashing.at.ply.gg:16214

Mutex

Windows Update

Attributes

reg_key
Windows Update
splitter
|Hassan|

Targets

- Target
  
  45a62f1029038d019e1949acfa94d281e14db00b1a2b344b8dbb0676dd2c4f55.exe
- Size
  
  43KB
- MD5
  
  0fe9db2d2771eeec1f3596dc025453cc
- SHA1
  
  1ee2f8c16efff031352c11c22b908fd6f94a0fae
- SHA256
  
  45a62f1029038d019e1949acfa94d281e14db00b1a2b344b8dbb0676dd2c4f55
- SHA512
  
  6450b2ceab97484611c7322170194230d53977d29d926a54016c1c49bfd89d0a70c9c85d50e371e602a9b0bd7f2677e8af3ce93bb26807a3ec8a893907177365
- SSDEEP
  
  384:DZyk04i9jTk7Vqb08yGLws3esM9tGHJIhYb69D9O5UE5QzwBlpJNakkjh/TzF7p:t7Y5A8Y5Gksu9snvQO+P4+L
Score

1^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

negrotanka666njrat

behavioral1

behavioral2