General

  • Target

    windows.exe

  • Size

    166KB

  • Sample

    240127-t39qdsfhb4

  • MD5

    e71c28e8477f834d5be76b3f0014ba63

  • SHA1

    e549dc413c518f04bdb1c52b8c1b73e1de9acde4

  • SHA256

    5c791f2305f29e53d11c9f575494870aea19d9adcbfdc531ce57ad3cd2119b1e

  • SHA512

    3b3c7f97ee6e201a9d4bb0dcb8b11a49581acab8d4379e24e33a9b5c8bdc14567d225a15f5dcca656ec619c54d1b72e46b86a75747d09459fc804ef5e70611b4

  • SSDEEP

    3072:AlRdz/yKrg8UZD7wOQDrm6cnzf4aq1cESGfX6dObzXBc2ragAJpVe+9:AlRG7wOQDWzwaqddfXRbVr8z

Malware Config

Targets

    • Target

      windows.exe

    • Size

      166KB

    • MD5

      e71c28e8477f834d5be76b3f0014ba63

    • SHA1

      e549dc413c518f04bdb1c52b8c1b73e1de9acde4

    • SHA256

      5c791f2305f29e53d11c9f575494870aea19d9adcbfdc531ce57ad3cd2119b1e

    • SHA512

      3b3c7f97ee6e201a9d4bb0dcb8b11a49581acab8d4379e24e33a9b5c8bdc14567d225a15f5dcca656ec619c54d1b72e46b86a75747d09459fc804ef5e70611b4

    • SSDEEP

      3072:AlRdz/yKrg8UZD7wOQDrm6cnzf4aq1cESGfX6dObzXBc2ragAJpVe+9:AlRG7wOQDWzwaqddfXRbVr8z

    • njRAT/Bladabindi

      Widely used RAT written in .NET.

    • Drops startup file

    • Executes dropped EXE

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks