General

  • Target

    c665f69b9b7e622a0ad80e2ff5159b76.exe

  • Size

    337KB

  • Sample

    240501-rl99gsag69

  • MD5

    c665f69b9b7e622a0ad80e2ff5159b76

  • SHA1

    4ded02c9a2d617e9527ba5fb7cf5d711e207a007

  • SHA256

    07c9ae9c7b60c526e61c66958b2226f62ba7e2dd5d426623f45d443297b2686d

  • SHA512

    2b156989e9fe47c012aec16628064f5b26ed0d77f1fdb617f8009a09f8b3b0342341e8f4cf64974f8cbdc760394f43044e19d9d2dab1cc64adb26f02ec28b614

  • SSDEEP

    3072:M42VPtmBxO0JOSgYfc0DV+1BIyLK5jZWlfXXqyYwi8x4Yfc09:bymfO0JOS1+fIyG5jZkCwi8r

Malware Config

Targets

    • Target

      c665f69b9b7e622a0ad80e2ff5159b76.exe

    • Size

      337KB

    • MD5

      c665f69b9b7e622a0ad80e2ff5159b76

    • SHA1

      4ded02c9a2d617e9527ba5fb7cf5d711e207a007

    • SHA256

      07c9ae9c7b60c526e61c66958b2226f62ba7e2dd5d426623f45d443297b2686d

    • SHA512

      2b156989e9fe47c012aec16628064f5b26ed0d77f1fdb617f8009a09f8b3b0342341e8f4cf64974f8cbdc760394f43044e19d9d2dab1cc64adb26f02ec28b614

    • SSDEEP

      3072:M42VPtmBxO0JOSgYfc0DV+1BIyLK5jZWlfXXqyYwi8x4Yfc09:bymfO0JOS1+fIyG5jZkCwi8r

    • Adds autorun key to be loaded by Explorer.exe on startup

    • njRAT/Bladabindi

      Widely used RAT written in .NET.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks