General
-
Target
Payload.exe
-
Size
27KB
-
Sample
231115-25bkdaee37
-
MD5
76860b5759bcbe6665e98564bb213b0b
-
SHA1
b18d7df7cc5b82cc6a5de93a1fcab2bba488e009
-
SHA256
723e9848231a01412bfdef39d912c841f832f29cfaab6019e01f7d4e64ef01b0
-
SHA512
9d8c0768c6ab4d2adea7b2d264a357403cc8e8455fd65b7c52ccd5c78a2787932c2f511729cd4f7c41c768efb5a5420080d5d6b39a9308599b48575bc9dd210e
-
SSDEEP
384:2LoFhQf3GownyfwNUlBUAC2PnthlMxAQk93vmhm7UMKmIEecKdbXTzm9bVhcaH6b:wY2u8oy+xA/vMHTi9bD
Behavioral task
behavioral1
Sample
Payload.exe
Resource
win10v2004-20231025-es
Malware Config
Extracted
njrat
v2.0
x
system-reported.gl.at.ply.gg:14520:5570
Windows
-
reg_key
Windows
-
splitter
|-F-|
Targets
-
-
Target
Payload.exe
-
Size
27KB
-
MD5
76860b5759bcbe6665e98564bb213b0b
-
SHA1
b18d7df7cc5b82cc6a5de93a1fcab2bba488e009
-
SHA256
723e9848231a01412bfdef39d912c841f832f29cfaab6019e01f7d4e64ef01b0
-
SHA512
9d8c0768c6ab4d2adea7b2d264a357403cc8e8455fd65b7c52ccd5c78a2787932c2f511729cd4f7c41c768efb5a5420080d5d6b39a9308599b48575bc9dd210e
-
SSDEEP
384:2LoFhQf3GownyfwNUlBUAC2PnthlMxAQk93vmhm7UMKmIEecKdbXTzm9bVhcaH6b:wY2u8oy+xA/vMHTi9bD
Score7/10-
Drops startup file
-
Adds Run key to start application
-