njrat | 2fd86f06069a4cbbe9a40cb6c710c77eb1b436874745b1b9a078510ac2e5e384 | Triage

Sharing

General

Target

abfbccfd1dd51687f33416225a3b61d0_NeikiAnalytics.exe
Size

23KB
Sample

240525-t7bddsag7w
MD5

abfbccfd1dd51687f33416225a3b61d0
SHA1

daf6a2919f730d90a26f2694577eae759c0bf17c
SHA256

2fd86f06069a4cbbe9a40cb6c710c77eb1b436874745b1b9a078510ac2e5e384
SHA512

a99f35774552a1737556c7f63c8cc9cdeeaaa9ff0dfe61494ee50bd7481ffb1d513d361d7ceafeaebc3f2d88a1474dff38fb28b3f90a65195d08fb927fbb00e3
SSDEEP

384:+Ymdk8XvCJrQLdRGSiEYF7Y65gPyx6BDXNRmRvR6JZlbw8hqIusZzZYV:hwWkti/aeRpcnuL

Score

10^/10

njrat 14 mai generateur xbox microsoft phishing

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

14 mai generateur xbox

C2

89.94.35.57:1604

Mutex

ef05e501c2e286164abf5fcaa961559f

Attributes

reg_key
ef05e501c2e286164abf5fcaa961559f
splitter
|'|'|

Targets

- Target
  
  abfbccfd1dd51687f33416225a3b61d0_NeikiAnalytics.exe
- Size
  
  23KB
- MD5
  
  abfbccfd1dd51687f33416225a3b61d0
- SHA1
  
  daf6a2919f730d90a26f2694577eae759c0bf17c
- SHA256
  
  2fd86f06069a4cbbe9a40cb6c710c77eb1b436874745b1b9a078510ac2e5e384
- SHA512
  
  a99f35774552a1737556c7f63c8cc9cdeeaaa9ff0dfe61494ee50bd7481ffb1d513d361d7ceafeaebc3f2d88a1474dff38fb28b3f90a65195d08fb927fbb00e3
- SSDEEP
  
  384:+Ymdk8XvCJrQLdRGSiEYF7Y65gPyx6BDXNRmRvR6JZlbw8hqIusZzZYV:hwWkti/aeRpcnuL
Score

5^/10

microsoft phishing
- Detected potential entity reuse from brand microsoft.
  phishing microsoft
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

14 mai generateur xboxnjrat

behavioral1

behavioral2

microsoftphishing