njrat | ba5781e82208fc43ed641703e3acb2303383969043d8a8b1c74ec8a020e8bcd4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ba5781e82208fc43ed641703e3acb2303383969043d8a8b1c74ec8a020e8bcd4
Size

25KB
Sample

240406-ck634shf58
MD5

61efe37cd0927a3e495230c7772f0b74
SHA1

91f6e125bf3cf3db04d60ad8ac6a0c3e5a9f845a
SHA256

ba5781e82208fc43ed641703e3acb2303383969043d8a8b1c74ec8a020e8bcd4
SHA512

9e238f0d684885bf497bc0f685d1d10cedaf3be215a8b7c42db05b02361dadf5c7ee7f42ec1264f89895f11ce8401a6a5df1d99ceaf142350cc09e2da9c4e366
SSDEEP

768:svpnI/0RuCK1dLoBlFu9wqBU/XdklbAH3bwsVV:QEj91ddRqFXXXH

Score

10^/10

njrat hacked trojan

Malware Config

Extracted

Family

njrat

Version

Njrat 0.7 Golden By Hassan Amiri

Botnet

HacKed

C2

127.0.0.1:5552

Mutex

Windows Update

Attributes

reg_key
Windows Update
splitter
|Hassan|

Targets

- Target
  
  ba5781e82208fc43ed641703e3acb2303383969043d8a8b1c74ec8a020e8bcd4
- Size
  
  25KB
- MD5
  
  61efe37cd0927a3e495230c7772f0b74
- SHA1
  
  91f6e125bf3cf3db04d60ad8ac6a0c3e5a9f845a
- SHA256
  
  ba5781e82208fc43ed641703e3acb2303383969043d8a8b1c74ec8a020e8bcd4
- SHA512
  
  9e238f0d684885bf497bc0f685d1d10cedaf3be215a8b7c42db05b02361dadf5c7ee7f42ec1264f89895f11ce8401a6a5df1d99ceaf142350cc09e2da9c4e366
- SSDEEP
  
  768:svpnI/0RuCK1dLoBlFu9wqBU/XdklbAH3bwsVV:QEj91ddRqFXXXH
Score

10^/10

njrat hacked trojan
- njRAT/Bladabindi
  Widely used RAT written in .NET.
  trojan njrat
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

njrathackedtrojan

behavioral2

njrathackedtrojan