General

  • Target

    0a06e6903123535f6ff6d61aeeebab83_JaffaCakes118

  • Size

    23KB

  • Sample

    240430-sjjjesbe59

  • MD5

    0a06e6903123535f6ff6d61aeeebab83

  • SHA1

    2c38507b57e0837aed13509b6048450b3f74b450

  • SHA256

    5a45425b225cc432471d02941c7edbdfff0cf9e28ee32efdb9cd4a372fad9c18

  • SHA512

    6490ef5523557586a8d1173fb8a6613a235ae98d03499e78bd16bb1bcbe1ae13acc968ce0a8ccd8ea7874f793245a2c97fde14891af42896044b45ea6d46f6cf

  • SSDEEP

    384:DY6ze6e1V4hXp4ll/VSu20g/Tdw6PgZIjWFBj1mRvR6JZlbw8hqIusZzZ5s:te9Su12XRpcnut

Score
10/10

Malware Config

Extracted

Family

njrat

Version

Hallaj PRO Rat [Fixed]

Botnet

شبيحة

C2

newman.hopto.org:333

Mutex

3a546d53f208fb2d33cd168d9319738f

Attributes
  • reg_key

    3a546d53f208fb2d33cd168d9319738f

  • splitter

    boolLove

Targets

    • Target

      0a06e6903123535f6ff6d61aeeebab83_JaffaCakes118

    • Size

      23KB

    • MD5

      0a06e6903123535f6ff6d61aeeebab83

    • SHA1

      2c38507b57e0837aed13509b6048450b3f74b450

    • SHA256

      5a45425b225cc432471d02941c7edbdfff0cf9e28ee32efdb9cd4a372fad9c18

    • SHA512

      6490ef5523557586a8d1173fb8a6613a235ae98d03499e78bd16bb1bcbe1ae13acc968ce0a8ccd8ea7874f793245a2c97fde14891af42896044b45ea6d46f6cf

    • SSDEEP

      384:DY6ze6e1V4hXp4ll/VSu20g/Tdw6PgZIjWFBj1mRvR6JZlbw8hqIusZzZ5s:te9Su12XRpcnut

    Score
    10/10
    • njRAT/Bladabindi

      Widely used RAT written in .NET.

MITRE ATT&CK Matrix

Tasks