Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

NEAS.0770f...JC.exe

windows7-x64

10

NEAS.0770f...JC.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    NEAS.0770feaf53ea7d2f9f86552bfce41210_JC.exe

  • Size

    337KB

  • Sample

    231011-ts5cxshg8w

  • MD5

    0770feaf53ea7d2f9f86552bfce41210

  • SHA1

    b9190b3995cb202954b4625d220af1cb503b35dc

  • SHA256

    72b08ebc07cddd18644dcba376cc48984f53a20faff9f9251d4a5086cf1f2798

  • SHA512

    68c3f4af7e090131c6488df9c8b33e30d4ff2bc4951b9bb1371bbabcec213f6a17eca6d1fb9f11c79978fe925b5d6b84c965d8780291b2895ec1d7d1dd43ec32

  • SSDEEP

    3072:23REIeSjNY6+vSS+qhVt/X0rgYfc0DV+1BIyLK5jZWlfXXqyYwi8x4Yfc09:23REIVy6IpX0r1+fIyG5jZkCwi8r

Score
10/10
njratpersistencetrojan

Malware Config

Targets

    • Target

      NEAS.0770feaf53ea7d2f9f86552bfce41210_JC.exe

    • Size

      337KB

    • MD5

      0770feaf53ea7d2f9f86552bfce41210

    • SHA1

      b9190b3995cb202954b4625d220af1cb503b35dc

    • SHA256

      72b08ebc07cddd18644dcba376cc48984f53a20faff9f9251d4a5086cf1f2798

    • SHA512

      68c3f4af7e090131c6488df9c8b33e30d4ff2bc4951b9bb1371bbabcec213f6a17eca6d1fb9f11c79978fe925b5d6b84c965d8780291b2895ec1d7d1dd43ec32

    • SSDEEP

      3072:23REIeSjNY6+vSS+qhVt/X0rgYfc0DV+1BIyLK5jZWlfXXqyYwi8x4Yfc09:23REIVy6IpX0r1+fIyG5jZkCwi8r

    Score
    10/10
    njratpersistencetrojan

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • njRAT/Bladabindi

      Widely used RAT written in .NET.

      trojannjrat

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks