General

  • Target

    xxVP3gG1EtTm.bin.rar

  • Size

    197KB

  • Sample

    230809-3ygcqagd68

  • MD5

    f21b9c480efaa7cf5561bbf3d0adebcc

  • SHA1

    d039bbfe96c7f661c0ac9af0492799d511ed4642

  • SHA256

    6ae275a8e688d43608d101ced8452ff19b350db9a86a16f5b66a2b25da208fdb

  • SHA512

    eace88f410052e6960a678d42da10abcbd3a6faf0cb557b4fa9bd81f10d29201afb6471389ac15b35f0468bc86c6ab553bed8f84fc421b93326c78af0708a19a

  • SSDEEP

    3072:JnWInWGnW9nWuLnW0nW1nWdnWXnWmnWdnWRnWYnW0nWznWlnWlnWVnWFnWYnWKk:JXvSFn+oKBO6bnCG4WELy

Score
10/10

Malware Config

Extracted

Family

njrat

Version

0.7NC

Botnet

NYAN CAT

C2

fortuna777.duckdns.org:1994

Mutex

4af4f76ac9fb4

Attributes
  • reg_key

    4af4f76ac9fb4

  • splitter

    @!#&^%$

Targets

    • Target

      xxVP3gG1EtTm - Copy (10) - Copy.bin

    • Size

      32KB

    • MD5

      634b0c0b1804d8d62ca8814156047bdc

    • SHA1

      b7014e954734810d733122013cd88d8645f55785

    • SHA256

      787ed9aeca155d295395f3ca3ddadf29cfc8c7f66ad01978b61d1a5925b05e20

    • SHA512

      598e59d5074b6e5af388e602ea4019b8765e5bb7b8046a526512a65e0594eff4c5562e97e66beb8926a7145d8607f613330ec945e5fc98bbcad8370e85613df0

    • SSDEEP

      384:X0bUe5XB4e0XmOnCgFS6Z/73DWT0tTUFQqz98Obbm:8T9Bu1vS6B9mbm

    Score
    1/10
    • Target

      xxVP3gG1EtTm - Copy (2) - Copy.bin

    • Size

      32KB

    • MD5

      634b0c0b1804d8d62ca8814156047bdc

    • SHA1

      b7014e954734810d733122013cd88d8645f55785

    • SHA256

      787ed9aeca155d295395f3ca3ddadf29cfc8c7f66ad01978b61d1a5925b05e20

    • SHA512

      598e59d5074b6e5af388e602ea4019b8765e5bb7b8046a526512a65e0594eff4c5562e97e66beb8926a7145d8607f613330ec945e5fc98bbcad8370e85613df0

    • SSDEEP

      384:X0bUe5XB4e0XmOnCgFS6Z/73DWT0tTUFQqz98Obbm:8T9Bu1vS6B9mbm

    Score
    1/10
    • Target

      xxVP3gG1EtTm - Copy (2).bin

    • Size

      32KB

    • MD5

      634b0c0b1804d8d62ca8814156047bdc

    • SHA1

      b7014e954734810d733122013cd88d8645f55785

    • SHA256

      787ed9aeca155d295395f3ca3ddadf29cfc8c7f66ad01978b61d1a5925b05e20

    • SHA512

      598e59d5074b6e5af388e602ea4019b8765e5bb7b8046a526512a65e0594eff4c5562e97e66beb8926a7145d8607f613330ec945e5fc98bbcad8370e85613df0

    • SSDEEP

      384:X0bUe5XB4e0XmOnCgFS6Z/73DWT0tTUFQqz98Obbm:8T9Bu1vS6B9mbm

    Score
    1/10
    • Target

      xxVP3gG1EtTm - Copy (3) - Copy.bin

    • Size

      32KB

    • MD5

      634b0c0b1804d8d62ca8814156047bdc

    • SHA1

      b7014e954734810d733122013cd88d8645f55785

    • SHA256

      787ed9aeca155d295395f3ca3ddadf29cfc8c7f66ad01978b61d1a5925b05e20

    • SHA512

      598e59d5074b6e5af388e602ea4019b8765e5bb7b8046a526512a65e0594eff4c5562e97e66beb8926a7145d8607f613330ec945e5fc98bbcad8370e85613df0

    • SSDEEP

      384:X0bUe5XB4e0XmOnCgFS6Z/73DWT0tTUFQqz98Obbm:8T9Bu1vS6B9mbm

    Score
    1/10
    • Target

      xxVP3gG1EtTm - Copy (3).bin

    • Size

      32KB

    • MD5

      634b0c0b1804d8d62ca8814156047bdc

    • SHA1

      b7014e954734810d733122013cd88d8645f55785

    • SHA256

      787ed9aeca155d295395f3ca3ddadf29cfc8c7f66ad01978b61d1a5925b05e20

    • SHA512

      598e59d5074b6e5af388e602ea4019b8765e5bb7b8046a526512a65e0594eff4c5562e97e66beb8926a7145d8607f613330ec945e5fc98bbcad8370e85613df0

    • SSDEEP

      384:X0bUe5XB4e0XmOnCgFS6Z/73DWT0tTUFQqz98Obbm:8T9Bu1vS6B9mbm

    Score
    1/10
    • Target

      xxVP3gG1EtTm - Copy (4) - Copy.bin

    • Size

      32KB

    • MD5

      634b0c0b1804d8d62ca8814156047bdc

    • SHA1

      b7014e954734810d733122013cd88d8645f55785

    • SHA256

      787ed9aeca155d295395f3ca3ddadf29cfc8c7f66ad01978b61d1a5925b05e20

    • SHA512

      598e59d5074b6e5af388e602ea4019b8765e5bb7b8046a526512a65e0594eff4c5562e97e66beb8926a7145d8607f613330ec945e5fc98bbcad8370e85613df0

    • SSDEEP

      384:X0bUe5XB4e0XmOnCgFS6Z/73DWT0tTUFQqz98Obbm:8T9Bu1vS6B9mbm

    Score
    1/10
    • Target

      xxVP3gG1EtTm - Copy (4).bin

    • Size

      32KB

    • MD5

      634b0c0b1804d8d62ca8814156047bdc

    • SHA1

      b7014e954734810d733122013cd88d8645f55785

    • SHA256

      787ed9aeca155d295395f3ca3ddadf29cfc8c7f66ad01978b61d1a5925b05e20

    • SHA512

      598e59d5074b6e5af388e602ea4019b8765e5bb7b8046a526512a65e0594eff4c5562e97e66beb8926a7145d8607f613330ec945e5fc98bbcad8370e85613df0

    • SSDEEP

      384:X0bUe5XB4e0XmOnCgFS6Z/73DWT0tTUFQqz98Obbm:8T9Bu1vS6B9mbm

    Score
    1/10
    • Target

      xxVP3gG1EtTm - Copy (5) - Copy.bin

    • Size

      32KB

    • MD5

      634b0c0b1804d8d62ca8814156047bdc

    • SHA1

      b7014e954734810d733122013cd88d8645f55785

    • SHA256

      787ed9aeca155d295395f3ca3ddadf29cfc8c7f66ad01978b61d1a5925b05e20

    • SHA512

      598e59d5074b6e5af388e602ea4019b8765e5bb7b8046a526512a65e0594eff4c5562e97e66beb8926a7145d8607f613330ec945e5fc98bbcad8370e85613df0

    • SSDEEP

      384:X0bUe5XB4e0XmOnCgFS6Z/73DWT0tTUFQqz98Obbm:8T9Bu1vS6B9mbm

    Score
    1/10
    • Target

      xxVP3gG1EtTm - Copy (5).bin

    • Size

      32KB

    • MD5

      634b0c0b1804d8d62ca8814156047bdc

    • SHA1

      b7014e954734810d733122013cd88d8645f55785

    • SHA256

      787ed9aeca155d295395f3ca3ddadf29cfc8c7f66ad01978b61d1a5925b05e20

    • SHA512

      598e59d5074b6e5af388e602ea4019b8765e5bb7b8046a526512a65e0594eff4c5562e97e66beb8926a7145d8607f613330ec945e5fc98bbcad8370e85613df0

    • SSDEEP

      384:X0bUe5XB4e0XmOnCgFS6Z/73DWT0tTUFQqz98Obbm:8T9Bu1vS6B9mbm

    Score
    1/10
    • Target

      xxVP3gG1EtTm - Copy (6) - Copy.bin

    • Size

      32KB

    • MD5

      634b0c0b1804d8d62ca8814156047bdc

    • SHA1

      b7014e954734810d733122013cd88d8645f55785

    • SHA256

      787ed9aeca155d295395f3ca3ddadf29cfc8c7f66ad01978b61d1a5925b05e20

    • SHA512

      598e59d5074b6e5af388e602ea4019b8765e5bb7b8046a526512a65e0594eff4c5562e97e66beb8926a7145d8607f613330ec945e5fc98bbcad8370e85613df0

    • SSDEEP

      384:X0bUe5XB4e0XmOnCgFS6Z/73DWT0tTUFQqz98Obbm:8T9Bu1vS6B9mbm

    Score
    1/10
    • Target

      xxVP3gG1EtTm - Copy (6).bin

    • Size

      32KB

    • MD5

      634b0c0b1804d8d62ca8814156047bdc

    • SHA1

      b7014e954734810d733122013cd88d8645f55785

    • SHA256

      787ed9aeca155d295395f3ca3ddadf29cfc8c7f66ad01978b61d1a5925b05e20

    • SHA512

      598e59d5074b6e5af388e602ea4019b8765e5bb7b8046a526512a65e0594eff4c5562e97e66beb8926a7145d8607f613330ec945e5fc98bbcad8370e85613df0

    • SSDEEP

      384:X0bUe5XB4e0XmOnCgFS6Z/73DWT0tTUFQqz98Obbm:8T9Bu1vS6B9mbm

    Score
    1/10
    • Target

      xxVP3gG1EtTm - Copy (7) - Copy.bin

    • Size

      32KB

    • MD5

      634b0c0b1804d8d62ca8814156047bdc

    • SHA1

      b7014e954734810d733122013cd88d8645f55785

    • SHA256

      787ed9aeca155d295395f3ca3ddadf29cfc8c7f66ad01978b61d1a5925b05e20

    • SHA512

      598e59d5074b6e5af388e602ea4019b8765e5bb7b8046a526512a65e0594eff4c5562e97e66beb8926a7145d8607f613330ec945e5fc98bbcad8370e85613df0

    • SSDEEP

      384:X0bUe5XB4e0XmOnCgFS6Z/73DWT0tTUFQqz98Obbm:8T9Bu1vS6B9mbm

    Score
    1/10
    • Target

      xxVP3gG1EtTm - Copy (7).bin

    • Size

      32KB

    • MD5

      634b0c0b1804d8d62ca8814156047bdc

    • SHA1

      b7014e954734810d733122013cd88d8645f55785

    • SHA256

      787ed9aeca155d295395f3ca3ddadf29cfc8c7f66ad01978b61d1a5925b05e20

    • SHA512

      598e59d5074b6e5af388e602ea4019b8765e5bb7b8046a526512a65e0594eff4c5562e97e66beb8926a7145d8607f613330ec945e5fc98bbcad8370e85613df0

    • SSDEEP

      384:X0bUe5XB4e0XmOnCgFS6Z/73DWT0tTUFQqz98Obbm:8T9Bu1vS6B9mbm

    Score
    1/10
    • Target

      xxVP3gG1EtTm - Copy (8) - Copy.bin

    • Size

      32KB

    • MD5

      634b0c0b1804d8d62ca8814156047bdc

    • SHA1

      b7014e954734810d733122013cd88d8645f55785

    • SHA256

      787ed9aeca155d295395f3ca3ddadf29cfc8c7f66ad01978b61d1a5925b05e20

    • SHA512

      598e59d5074b6e5af388e602ea4019b8765e5bb7b8046a526512a65e0594eff4c5562e97e66beb8926a7145d8607f613330ec945e5fc98bbcad8370e85613df0

    • SSDEEP

      384:X0bUe5XB4e0XmOnCgFS6Z/73DWT0tTUFQqz98Obbm:8T9Bu1vS6B9mbm

    Score
    1/10
    • Target

      xxVP3gG1EtTm - Copy (9) - Copy.bin

    • Size

      32KB

    • MD5

      634b0c0b1804d8d62ca8814156047bdc

    • SHA1

      b7014e954734810d733122013cd88d8645f55785

    • SHA256

      787ed9aeca155d295395f3ca3ddadf29cfc8c7f66ad01978b61d1a5925b05e20

    • SHA512

      598e59d5074b6e5af388e602ea4019b8765e5bb7b8046a526512a65e0594eff4c5562e97e66beb8926a7145d8607f613330ec945e5fc98bbcad8370e85613df0

    • SSDEEP

      384:X0bUe5XB4e0XmOnCgFS6Z/73DWT0tTUFQqz98Obbm:8T9Bu1vS6B9mbm

    Score
    5/10
    • Drops file in System32 directory

    • Target

      xxVP3gG1EtTm - Copy - Copy (2).bin

    • Size

      32KB

    • MD5

      634b0c0b1804d8d62ca8814156047bdc

    • SHA1

      b7014e954734810d733122013cd88d8645f55785

    • SHA256

      787ed9aeca155d295395f3ca3ddadf29cfc8c7f66ad01978b61d1a5925b05e20

    • SHA512

      598e59d5074b6e5af388e602ea4019b8765e5bb7b8046a526512a65e0594eff4c5562e97e66beb8926a7145d8607f613330ec945e5fc98bbcad8370e85613df0

    • SSDEEP

      384:X0bUe5XB4e0XmOnCgFS6Z/73DWT0tTUFQqz98Obbm:8T9Bu1vS6B9mbm

    Score
    1/10
    • Target

      xxVP3gG1EtTm - Copy - Copy (3).bin

    • Size

      32KB

    • MD5

      634b0c0b1804d8d62ca8814156047bdc

    • SHA1

      b7014e954734810d733122013cd88d8645f55785

    • SHA256

      787ed9aeca155d295395f3ca3ddadf29cfc8c7f66ad01978b61d1a5925b05e20

    • SHA512

      598e59d5074b6e5af388e602ea4019b8765e5bb7b8046a526512a65e0594eff4c5562e97e66beb8926a7145d8607f613330ec945e5fc98bbcad8370e85613df0

    • SSDEEP

      384:X0bUe5XB4e0XmOnCgFS6Z/73DWT0tTUFQqz98Obbm:8T9Bu1vS6B9mbm

    Score
    1/10
    • Target

      xxVP3gG1EtTm - Copy - Copy.bin

    • Size

      32KB

    • MD5

      634b0c0b1804d8d62ca8814156047bdc

    • SHA1

      b7014e954734810d733122013cd88d8645f55785

    • SHA256

      787ed9aeca155d295395f3ca3ddadf29cfc8c7f66ad01978b61d1a5925b05e20

    • SHA512

      598e59d5074b6e5af388e602ea4019b8765e5bb7b8046a526512a65e0594eff4c5562e97e66beb8926a7145d8607f613330ec945e5fc98bbcad8370e85613df0

    • SSDEEP

      384:X0bUe5XB4e0XmOnCgFS6Z/73DWT0tTUFQqz98Obbm:8T9Bu1vS6B9mbm

    Score
    1/10
    • Target

      xxVP3gG1EtTm - Copy.bin

    • Size

      32KB

    • MD5

      634b0c0b1804d8d62ca8814156047bdc

    • SHA1

      b7014e954734810d733122013cd88d8645f55785

    • SHA256

      787ed9aeca155d295395f3ca3ddadf29cfc8c7f66ad01978b61d1a5925b05e20

    • SHA512

      598e59d5074b6e5af388e602ea4019b8765e5bb7b8046a526512a65e0594eff4c5562e97e66beb8926a7145d8607f613330ec945e5fc98bbcad8370e85613df0

    • SSDEEP

      384:X0bUe5XB4e0XmOnCgFS6Z/73DWT0tTUFQqz98Obbm:8T9Bu1vS6B9mbm

    Score
    5/10
    • Drops file in System32 directory

    • Target

      xxVP3gG1EtTm.bin

    • Size

      32KB

    • MD5

      634b0c0b1804d8d62ca8814156047bdc

    • SHA1

      b7014e954734810d733122013cd88d8645f55785

    • SHA256

      787ed9aeca155d295395f3ca3ddadf29cfc8c7f66ad01978b61d1a5925b05e20

    • SHA512

      598e59d5074b6e5af388e602ea4019b8765e5bb7b8046a526512a65e0594eff4c5562e97e66beb8926a7145d8607f613330ec945e5fc98bbcad8370e85613df0

    • SSDEEP

      384:X0bUe5XB4e0XmOnCgFS6Z/73DWT0tTUFQqz98Obbm:8T9Bu1vS6B9mbm

    Score
    5/10
    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks