Overview

overview

10

Static

static

10

414c6d30f9...ba.exe

windows7-x64

10

414c6d30f9...ba.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    414c6d30f96608e10f3b5375da21ced79f35753e32dfe86e5650919e280480ba

  • Size

    337KB

  • Sample

    240723-zpkf8s1djc

  • MD5

    dbae6225634f2513b477dae88037fa94

  • SHA1

    b2a1f79fc3bc16125469df671ec6bbe03491ab89

  • SHA256

    414c6d30f96608e10f3b5375da21ced79f35753e32dfe86e5650919e280480ba

  • SHA512

    37bd3c6ded6c6797a99a5ac9f97dde44314bccb8e11399e858a09fd710bef3596fae6052880fffc1043102506f9a021065dbd147575367d3c6de1346e9088ac9

  • SSDEEP

    3072:j1F7zVRZ4G7zfqK0LJPggYfc0DV+1BIyLK5jZWlfXXqyYwi8x4Yfc09:jv/ZBqPRg1+fIyG5jZkCwi8r

Score
10/10
njratdiscoverypersistencetrojan

Malware Config

Targets

    • Target

      414c6d30f96608e10f3b5375da21ced79f35753e32dfe86e5650919e280480ba

    • Size

      337KB

    • MD5

      dbae6225634f2513b477dae88037fa94

    • SHA1

      b2a1f79fc3bc16125469df671ec6bbe03491ab89

    • SHA256

      414c6d30f96608e10f3b5375da21ced79f35753e32dfe86e5650919e280480ba

    • SHA512

      37bd3c6ded6c6797a99a5ac9f97dde44314bccb8e11399e858a09fd710bef3596fae6052880fffc1043102506f9a021065dbd147575367d3c6de1346e9088ac9

    • SSDEEP

      3072:j1F7zVRZ4G7zfqK0LJPggYfc0DV+1BIyLK5jZWlfXXqyYwi8x4Yfc09:jv/ZBqPRg1+fIyG5jZkCwi8r

    Score
    10/10
    njratdiscoverypersistencetrojan

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • njRAT/Bladabindi

      Widely used RAT written in .NET.

      trojannjrat

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks