4b5c8c4c2ac56489abb25e1fea7dc6de2b17164c179d6f8a4159fe52462224f0 | Triage

Submit
Reports

Overview

overview

6

Static

static

3

NinjaTrader.exe

windows7-x64

NinjaTrader.exe

windows10-2004-x64

Sharing

General

Target

NinjaTrader.exe
Size

498KB
Sample

240219-t11dyagb41
MD5

428ab5e478bbdc7e4d86096ae242fd6a
SHA1

2b4cdb6ba05010db0004a82a302acd38805ee671
SHA256

4b5c8c4c2ac56489abb25e1fea7dc6de2b17164c179d6f8a4159fe52462224f0
SHA512

db05feda7e3de416355c3c27db3f46e5e67611555717cac4c4afb1a2005b46df0a1b91f30116f28c2779b49f2691fa4d37c486d15e5ca17bbfa570026b2480b9
SSDEEP

12288:esdqaOs8VZ2ygYJUYP8FIeQsjrK023TE05l:xdqNsYBUYkFIkvA3nl

Score

6^/10

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

NinjaTrader.exe

Resource

win7-20231129-en

windows7-x64

1 signatures

300 seconds

Behavioral task

behavioral2

Sample

NinjaTrader.exe

Resource

win10v2004-20231222-en

windows10-2004-x64

14 signatures

300 seconds

Malware Config

Targets

- Target
  
  NinjaTrader.exe
- Size
  
  498KB
- MD5
  
  428ab5e478bbdc7e4d86096ae242fd6a
- SHA1
  
  2b4cdb6ba05010db0004a82a302acd38805ee671
- SHA256
  
  4b5c8c4c2ac56489abb25e1fea7dc6de2b17164c179d6f8a4159fe52462224f0
- SHA512
  
  db05feda7e3de416355c3c27db3f46e5e67611555717cac4c4afb1a2005b46df0a1b91f30116f28c2779b49f2691fa4d37c486d15e5ca17bbfa570026b2480b9
- SSDEEP
  
  12288:esdqaOs8VZ2ygYJUYP8FIeQsjrK023TE05l:xdqNsYBUYkFIkvA3nl
Score

6^/10
- Legitimate hosting services abused for malware hosting/C2
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy