Overview

overview

10

Static

static

10

360ead71ec...fd.exe

windows7-x64

7

360ead71ec...fd.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1ee06ad4f233307cc8023e3c94e4e76c61842aa68bcde6f0537a1434b336745c

  • Size

    12KB

  • Sample

    240419-wx8bgsbg49

  • MD5

    4e1e7f605aa0f8883da4ff2ee14cc8f5

  • SHA1

    f17fa403cb388080e3c6f1447fbe7b2dfd20fd74

  • SHA256

    1ee06ad4f233307cc8023e3c94e4e76c61842aa68bcde6f0537a1434b336745c

  • SHA512

    efa315902e232c66c4ed09b9bb0d53387618b3745f64a92bb1b84a0877699876515ba2433fa56bd79298973797ca129035f7f65e79b42b8fc9ac3196b8e06246

  • SSDEEP

    384:4wBXEHV6lRLna7ZBiD0OytBcwV5dWgNE7SCfB4hhEpVqF:4wqklRLnAiuvcKux2j

Score
10/10
njrattooooooooooooop

Malware Config

Extracted

Family

njrat

Version

v2.0

Botnet

TOOOOOOOOOOOOOP

C2

2525.libya2020.com.ly:2525

Mutex

Windows

Attributes
  • reg_key

    Windows

  • splitter

    |-F-|

Targets

    • Target

      360ead71ece913d158114411716f0762e186f3544cc8addc1d6fc91897448bfd

    • Size

      27KB

    • MD5

      bde2bb327ed9a4e79f7b3b9aca119a1c

    • SHA1

      4233aa4bb67c378c35076507d65b280817c18695

    • SHA256

      360ead71ece913d158114411716f0762e186f3544cc8addc1d6fc91897448bfd

    • SHA512

      f456e1cf11ee77105fe5ff21a52758e1efbb3512e2fedf419ae05ce52c6a0df42b4eaefa67cab52cff9979eb2ea692ed2dd96029107af01c024b2d4c24a43457

    • SSDEEP

      384:FLTHTQn+oYjcUlItqC96PASW+MlAQk93vmhm7UMKmIEecKdbXTzm9bVhca36/r6h:F/xmUsflA/vMHTi9bD

    Score
    7/10

    • Drops startup file

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Tasks