General

  • Target

    bb895d63557f1a874142412e28875a1f35b142ca1e2a3cb1701f245555450265

  • Size

    112KB

  • Sample

    240501-c7zbsaea91

  • MD5

    35b06b5f8e96317a6638cd84cc785dee

  • SHA1

    4dab613a7da4928131739fe3b02cc6e755d41a5c

  • SHA256

    bb895d63557f1a874142412e28875a1f35b142ca1e2a3cb1701f245555450265

  • SHA512

    62ec850966405b989be98d99927987cb69575f5b8c85348568b56c0feb24f4d7313bd551f770b345521ad99a7f71eb84f42072732e5d74633165982623526e01

  • SSDEEP

    1536:m6I1KDlJePSslf/0G4d4T9Gt3LdwT1DaYfMZRWuLsV+19/IP:qskhBaCgt+TgYfc0DV+1BIP

Malware Config

Targets

    • Target

      bb895d63557f1a874142412e28875a1f35b142ca1e2a3cb1701f245555450265

    • Size

      112KB

    • MD5

      35b06b5f8e96317a6638cd84cc785dee

    • SHA1

      4dab613a7da4928131739fe3b02cc6e755d41a5c

    • SHA256

      bb895d63557f1a874142412e28875a1f35b142ca1e2a3cb1701f245555450265

    • SHA512

      62ec850966405b989be98d99927987cb69575f5b8c85348568b56c0feb24f4d7313bd551f770b345521ad99a7f71eb84f42072732e5d74633165982623526e01

    • SSDEEP

      1536:m6I1KDlJePSslf/0G4d4T9Gt3LdwT1DaYfMZRWuLsV+19/IP:qskhBaCgt+TgYfc0DV+1BIP

    • Adds autorun key to be loaded by Explorer.exe on startup

    • njRAT/Bladabindi

      Widely used RAT written in .NET.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks