General
-
Target
Client.exe
-
Size
31KB
-
Sample
240319-zbfwwseg67
-
MD5
2a4886693b72580bc327459b89dac363
-
SHA1
20ccec81fc5cbe314b059f4c9dd6723ca0abf3ac
-
SHA256
cd0031e6910db130c96a95d08c3ee1134bedad82a376c8905b8ac68c7150d0c3
-
SHA512
2498b6dc496dd00bc909a896e08e4c4ad7467213929321e2853abe2c03ca770b5eae90417a19b805bb421e8408b7348766d431390ccd5e6674c9e287adb5cf70
-
SSDEEP
768:Pdaxirnp7VJMzxn6zQJyRm3dPlvyYQmIDUu0ti4Oj:k0pKakJnQVk6j
Behavioral task
behavioral1
Sample
Client.exe
Resource
win10v2004-20240226-en
Malware Config
Extracted
njrat
0.7d
MyBot
group-w1ny (1):9999
a265c84371f56d29c720630027828b9e
-
reg_key
a265c84371f56d29c720630027828b9e
-
splitter
Y262SUCZ4UJJ
Targets
-
-
Target
Client.exe
-
Size
31KB
-
MD5
2a4886693b72580bc327459b89dac363
-
SHA1
20ccec81fc5cbe314b059f4c9dd6723ca0abf3ac
-
SHA256
cd0031e6910db130c96a95d08c3ee1134bedad82a376c8905b8ac68c7150d0c3
-
SHA512
2498b6dc496dd00bc909a896e08e4c4ad7467213929321e2853abe2c03ca770b5eae90417a19b805bb421e8408b7348766d431390ccd5e6674c9e287adb5cf70
-
SSDEEP
768:Pdaxirnp7VJMzxn6zQJyRm3dPlvyYQmIDUu0ti4Oj:k0pKakJnQVk6j
Score10/10-
Modifies Windows Firewall
-
Drops startup file
-
Adds Run key to start application
-
MITRE ATT&CK Matrix ATT&CK v13
Persistence
Create or Modify System Process
1Windows Service
1Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Privilege Escalation
Create or Modify System Process
1Windows Service
1Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1