General

  • Target

    3036-346-0x0000000000400000-0x000000000040C000-memory.dmp

  • Size

    48KB

  • Sample

    240731-chgqfa1dqm

  • MD5

    18deff82a9ba933d1a871b15ff97cdb9

  • SHA1

    7896044253055c95b38c445545fb60e60f598762

  • SHA256

    1543c81796c4d4d1ca1642b2a996212a70393589b8c53162dc6416c9a269665c

  • SHA512

    3b4add5059b3e794ce7a67077b2ef107955c0da750983546a97854868498f69b74ff4293992c2a990fab44c603ebb2d6f21b4035259b8dc9a9b3e1779fb02651

  • SSDEEP

    384:Vc6ze6e1PAhJVzC3tC1im/BsTx46PgZ0rap9HBmRvR6JZlbw8hqIusZzZzI:ve9EJLN/yRpcnuj

Score
10/10

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

neuf

C2

doddyfire.linkpc.net:10000

Mutex

e1a87040f2026369a233f9ae76301b7b

Attributes
  • reg_key

    e1a87040f2026369a233f9ae76301b7b

  • splitter

    |'|'|

Targets

    • Target

      3036-346-0x0000000000400000-0x000000000040C000-memory.dmp

    • Size

      48KB

    • MD5

      18deff82a9ba933d1a871b15ff97cdb9

    • SHA1

      7896044253055c95b38c445545fb60e60f598762

    • SHA256

      1543c81796c4d4d1ca1642b2a996212a70393589b8c53162dc6416c9a269665c

    • SHA512

      3b4add5059b3e794ce7a67077b2ef107955c0da750983546a97854868498f69b74ff4293992c2a990fab44c603ebb2d6f21b4035259b8dc9a9b3e1779fb02651

    • SSDEEP

      384:Vc6ze6e1PAhJVzC3tC1im/BsTx46PgZ0rap9HBmRvR6JZlbw8hqIusZzZzI:ve9EJLN/yRpcnuj

    Score
    1/10

MITRE ATT&CK Matrix

Tasks