Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

mrnjhdf.bin.exe

windows7-x64

10

mrnjhdf.bin.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    mrnjhdf.bin.exe

  • Size

    374KB

  • Sample

    230708-nbzhfsee87

  • MD5

    ba576a58775f397175afb3c6489ce7a6

  • SHA1

    1d360275e14ba307b8d890df12dbab3d3c1a46c2

  • SHA256

    90513b75e86063db47f5ab12981e611e1bdad8bd094c062c6c61aa761d7de8fa

  • SHA512

    e503cb59d691fcf135442e99eba39b01ce908eae0625d7484f35055275090746e60ec60e0734e342a4c7a02aebeb20f6e2781da9a1409d24c4d6c5a855a06372

  • SSDEEP

    6144:RruzpT9ioSfQd74QdWRoOamLIZC4M9w2GoS7ura8cWrafmJDR9a:gz/ioTbuoOaeh4M9QoNr7ymJDR9

Score
10/10
njratnyan cattrojan

Malware Config

Extracted

Family

njrat

Version

0.7NC

Botnet

NYAN CAT

C2

nj0509.duckdns.org:0509

Mutex

6ce9672712ba4490be

Attributes
  • reg_key

    6ce9672712ba4490be

  • splitter

    @!#&^%$

Targets

    • Target

      mrnjhdf.bin.exe

    • Size

      374KB

    • MD5

      ba576a58775f397175afb3c6489ce7a6

    • SHA1

      1d360275e14ba307b8d890df12dbab3d3c1a46c2

    • SHA256

      90513b75e86063db47f5ab12981e611e1bdad8bd094c062c6c61aa761d7de8fa

    • SHA512

      e503cb59d691fcf135442e99eba39b01ce908eae0625d7484f35055275090746e60ec60e0734e342a4c7a02aebeb20f6e2781da9a1409d24c4d6c5a855a06372

    • SSDEEP

      6144:RruzpT9ioSfQd74QdWRoOamLIZC4M9w2GoS7ura8cWrafmJDR9a:gz/ioTbuoOaeh4M9QoNr7ymJDR9

    Score
    10/10
    njratnyan cattrojan

    • njRAT/Bladabindi

      Widely used RAT written in .NET.

      trojannjrat

    • Drops startup file

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks