njrat | 5823f29ae3ab547994cb9a77c6cff8c125f7121067f89dcf53050ac1ac399fba | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

2308-17-0x...ry.exe

windows7-x64

2308-17-0x...ry.exe

windows10-2004-x64

Sharing

General

Target

2308-17-0x0000000000A70000-0x0000000000DEE000-memory.dmp
Size

1.1MB
Sample

231016-wp7pzsbd7x
MD5

ddc53b3df2f3719efa4fb95d8c829424
SHA1

2ad095fbaa03c4c745ac860f231f8be41d515324
SHA256

5823f29ae3ab547994cb9a77c6cff8c125f7121067f89dcf53050ac1ac399fba
SHA512

108d850205b61917ee132533657a6ef0b8f40e164e9ffa19460f85f75b399b20aaa0c13ee9aa93838ac17fa9aea479a2dcf617d7b5cba7afb21ac3f9daf5c560
SSDEEP

24576:lLB6+gW/Ai2OfzAq//18xxYEuhkgAfz1N9/1:lLVfEifhbkz51

Score

10^/10

njrat

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

2308-17-0x0000000000A70000-0x0000000000DEE000-memory.exe

Resource

win7-20230831-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

2308-17-0x0000000000A70000-0x0000000000DEE000-memory.exe

Resource

win10v2004-20230915-en

windows10-2004-x64

0 signatures

150 seconds

Malware Config

Extracted

Family

njrat

C2

hakim32.ddns.net:2000

Targets

- Target
  
  2308-17-0x0000000000A70000-0x0000000000DEE000-memory.dmp
- Size
  
  1.1MB
- MD5
  
  ddc53b3df2f3719efa4fb95d8c829424
- SHA1
  
  2ad095fbaa03c4c745ac860f231f8be41d515324
- SHA256
  
  5823f29ae3ab547994cb9a77c6cff8c125f7121067f89dcf53050ac1ac399fba
- SHA512
  
  108d850205b61917ee132533657a6ef0b8f40e164e9ffa19460f85f75b399b20aaa0c13ee9aa93838ac17fa9aea479a2dcf617d7b5cba7afb21ac3f9daf5c560
- SSDEEP
  
  24576:lLB6+gW/Ai2OfzAq//18xxYEuhkgAfz1N9/1:lLVfEifhbkz51
Score

1^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy