Resubmissions

28/01/2024, 01:50

240128-b9mv4aghe9 10

28/01/2024, 01:47

240128-b7msbagha3 10

General

  • Target

    chromelulz.exe

  • Size

    25KB

  • Sample

    240128-b7msbagha3

  • MD5

    44ed94ca16bac143365f29b66d40beaf

  • SHA1

    078e2c7dd0b759234e25ce0476f07f2110983035

  • SHA256

    bb7ede5a2cff1bdbab9330a40cf3d44d7bfac7e1ec2675a7232b8b6702a9330d

  • SHA512

    5673abcfbdf7bc0708132f155a7751971774e711d1a33d34644e262b51ee0d5ff7803a7bcdf1b68e8ad3df6013471921e0f8687ab5a34d3bb35fcd99b01741a0

  • SSDEEP

    384:5vcTzXQHKr9UE2KXb1vNUfg//mcBPp68sQcY1Q9bA55jRdqDMEK97WgYXohn:5vktrRjv+fy/JZ1QhAlQDMJ7Wgrh

Score
10/10

Malware Config

Extracted

Family

njrat

Version

Njrat 0.7 Golden By Hassan Amiri

Botnet

lulz

C2

/0.tcp.us-cal-1.ngrok.io:9000

Mutex

Windows Update

Attributes
  • reg_key

    Windows Update

  • splitter

    |Hassan|

Targets

    • Target

      chromelulz.exe

    • Size

      25KB

    • MD5

      44ed94ca16bac143365f29b66d40beaf

    • SHA1

      078e2c7dd0b759234e25ce0476f07f2110983035

    • SHA256

      bb7ede5a2cff1bdbab9330a40cf3d44d7bfac7e1ec2675a7232b8b6702a9330d

    • SHA512

      5673abcfbdf7bc0708132f155a7751971774e711d1a33d34644e262b51ee0d5ff7803a7bcdf1b68e8ad3df6013471921e0f8687ab5a34d3bb35fcd99b01741a0

    • SSDEEP

      384:5vcTzXQHKr9UE2KXb1vNUfg//mcBPp68sQcY1Q9bA55jRdqDMEK97WgYXohn:5vktrRjv+fy/JZ1QhAlQDMJ7Wgrh

    Score
    10/10
    • njRAT/Bladabindi

      Widely used RAT written in .NET.

MITRE ATT&CK Enterprise v15

Tasks