General

  • Target

    bd9d19a8e4a7dec27166db2d9be44cb0N.exe

  • Size

    337KB

  • Sample

    240722-redlya1cre

  • MD5

    bd9d19a8e4a7dec27166db2d9be44cb0

  • SHA1

    fcc32cca8239e2dc47f3028f105d1a04afb8f105

  • SHA256

    5730ce98b12bbd8a9bbf512ddc3f807cf0a21f8002cf917ff4fae9c37d3d21b3

  • SHA512

    a50e0f2a2f030bc82058e222d22a717464966626d78bfc5d2286f9638a8f36dcb9ab8ea9ac4a1c8be164a18e839ff9cbade0aa0b53aa005a9c791a85c3ae1391

  • SSDEEP

    3072:4+z9cV1tj5FEogYfc0DV+1BIyLK5jZWlfXXqyYwi8x4Yfc09:HpC11+fIyG5jZkCwi8r

Malware Config

Targets

    • Target

      bd9d19a8e4a7dec27166db2d9be44cb0N.exe

    • Size

      337KB

    • MD5

      bd9d19a8e4a7dec27166db2d9be44cb0

    • SHA1

      fcc32cca8239e2dc47f3028f105d1a04afb8f105

    • SHA256

      5730ce98b12bbd8a9bbf512ddc3f807cf0a21f8002cf917ff4fae9c37d3d21b3

    • SHA512

      a50e0f2a2f030bc82058e222d22a717464966626d78bfc5d2286f9638a8f36dcb9ab8ea9ac4a1c8be164a18e839ff9cbade0aa0b53aa005a9c791a85c3ae1391

    • SSDEEP

      3072:4+z9cV1tj5FEogYfc0DV+1BIyLK5jZWlfXXqyYwi8x4Yfc09:HpC11+fIyG5jZkCwi8r

    • Adds autorun key to be loaded by Explorer.exe on startup

    • njRAT/Bladabindi

      Widely used RAT written in .NET.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks