Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

NEAS.a61f1...JC.exe

windows7-x64

10

NEAS.a61f1...JC.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    NEAS.a61f106eff0b7b6a90130a98c185d1c0_JC.exe

  • Size

    337KB

  • Sample

    231102-3y6ydahb4s

  • MD5

    a61f106eff0b7b6a90130a98c185d1c0

  • SHA1

    208f120a1d4608a3919d7494878cbb69ba51631b

  • SHA256

    38033ce7c72e922ad9433be5e1d5892267dd8d1a61d6b9f67e6b2cda3a67f82b

  • SHA512

    c795d062a1b488ead78011223276d29fc0e1885183a68d4f370d4618ea6a62cc43d3a1d61f4b5f8309fed0b3798334c5911a522f30f5b1987182ffd680e2beaf

  • SSDEEP

    3072:Xoo3EzUrBwgYfc0DV+1BIyLK5jZWlfXXqyYwi8x4Yfc09:XooYo+1+fIyG5jZkCwi8r

Score
10/10
njratpersistencetrojan

Malware Config

Targets

    • Target

      NEAS.a61f106eff0b7b6a90130a98c185d1c0_JC.exe

    • Size

      337KB

    • MD5

      a61f106eff0b7b6a90130a98c185d1c0

    • SHA1

      208f120a1d4608a3919d7494878cbb69ba51631b

    • SHA256

      38033ce7c72e922ad9433be5e1d5892267dd8d1a61d6b9f67e6b2cda3a67f82b

    • SHA512

      c795d062a1b488ead78011223276d29fc0e1885183a68d4f370d4618ea6a62cc43d3a1d61f4b5f8309fed0b3798334c5911a522f30f5b1987182ffd680e2beaf

    • SSDEEP

      3072:Xoo3EzUrBwgYfc0DV+1BIyLK5jZWlfXXqyYwi8x4Yfc09:XooYo+1+fIyG5jZkCwi8r

    Score
    10/10
    njratpersistencetrojan

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • njRAT/Bladabindi

      Widely used RAT written in .NET.

      trojannjrat

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks