General

  • Target

    fa83e504b95de3de62befded238afe30N.exe

  • Size

    337KB

  • Sample

    240817-wzdjwsserl

  • MD5

    fa83e504b95de3de62befded238afe30

  • SHA1

    4ccd7561859e74b3a5604e515122be22d7f53a5a

  • SHA256

    83b1c14596e9257b0cc0a2390b192eeaf36f4e03e5b21fae97ce919f2bf1786f

  • SHA512

    15d8162237671b940758396bbe2310ddf085de6269f8bc77631b0825ed07fc24a53a4ba503af24466c291bcd1d44b3c554fe258e2ab945311f8f13d51b66654b

  • SSDEEP

    3072:zVh/jfv0z9gYfc0DV+1BIyLK5jZWlfXXqyYwi8x4Yfc09:zVhj0z91+fIyG5jZkCwi8r

Malware Config

Targets

    • Target

      fa83e504b95de3de62befded238afe30N.exe

    • Size

      337KB

    • MD5

      fa83e504b95de3de62befded238afe30

    • SHA1

      4ccd7561859e74b3a5604e515122be22d7f53a5a

    • SHA256

      83b1c14596e9257b0cc0a2390b192eeaf36f4e03e5b21fae97ce919f2bf1786f

    • SHA512

      15d8162237671b940758396bbe2310ddf085de6269f8bc77631b0825ed07fc24a53a4ba503af24466c291bcd1d44b3c554fe258e2ab945311f8f13d51b66654b

    • SSDEEP

      3072:zVh/jfv0z9gYfc0DV+1BIyLK5jZWlfXXqyYwi8x4Yfc09:zVhj0z91+fIyG5jZkCwi8r

    • Adds autorun key to be loaded by Explorer.exe on startup

    • njRAT/Bladabindi

      Widely used RAT written in .NET.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks