njrat | 126ec9320bdccffbe1491492ea3e1fa022de2c75a53652a9bd65884336e3e08c | Triage

Sharing

General

Target

552041ab0e376c4f1bed32d240062d8f
Size

33KB
Sample

231219-tbjpwsbeg2
MD5

552041ab0e376c4f1bed32d240062d8f
SHA1

e6040e55bac2c6da0721e963eadcc670f39a8fbb
SHA256

126ec9320bdccffbe1491492ea3e1fa022de2c75a53652a9bd65884336e3e08c
SHA512

0bbfe4b3414d931167b62190b8df29767650f9d899a20ca9304f4402205b21490359a919b97e1561aaf2ca93c5d53626f62c5f568b3efcb920ea658684901eba
SSDEEP

768:VvTFUZVUElWSnXWe59a2JVAO750rTEYHEaP80:tFUZtlWe1PVPCXHEG

Score

10^/10

njrat hacked trojan

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

HacKed

C2

njrat1254.ddns.net:1177

Mutex

Windows Update

Attributes

reg_key
Windows Update
splitter
|'|'|

Targets

- Target
  
  552041ab0e376c4f1bed32d240062d8f
- Size
  
  33KB
- MD5
  
  552041ab0e376c4f1bed32d240062d8f
- SHA1
  
  e6040e55bac2c6da0721e963eadcc670f39a8fbb
- SHA256
  
  126ec9320bdccffbe1491492ea3e1fa022de2c75a53652a9bd65884336e3e08c
- SHA512
  
  0bbfe4b3414d931167b62190b8df29767650f9d899a20ca9304f4402205b21490359a919b97e1561aaf2ca93c5d53626f62c5f568b3efcb920ea658684901eba
- SSDEEP
  
  768:VvTFUZVUElWSnXWe59a2JVAO750rTEYHEaP80:tFUZtlWe1PVPCXHEG
Score

10^/10

njrat hacked trojan
- njRAT/Bladabindi
  Widely used RAT written in .NET.
  trojan njrat
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2

njrathacked trojan