General

  • Target

    7f716913b2c348e67d16fd13bcc51950N.exe

  • Size

    256KB

  • Sample

    240818-hfvr6stdkj

  • MD5

    7f716913b2c348e67d16fd13bcc51950

  • SHA1

    5090388cc292a1f9413dd92d953bd0b0633e66b8

  • SHA256

    82fbf25ba463d4c4293710f2014130ab94120d5ce7f94d7ce50cf23e61d9f21a

  • SHA512

    f34a9af266430d7f75b042d8a5d123918bf9daba36f0d883509be9a35d4cbc2e6d764a4c9539441cad4b9f27b5473ee7dfc70e020201fc0acec7c4bbda6ee051

  • SSDEEP

    3072:HZ3KSK8CzJbaoigYfc0DV+1BIyLK5jZWlfXXqyYw:HVna93i1+fIyG5jZkCw

Malware Config

Targets

    • Target

      7f716913b2c348e67d16fd13bcc51950N.exe

    • Size

      256KB

    • MD5

      7f716913b2c348e67d16fd13bcc51950

    • SHA1

      5090388cc292a1f9413dd92d953bd0b0633e66b8

    • SHA256

      82fbf25ba463d4c4293710f2014130ab94120d5ce7f94d7ce50cf23e61d9f21a

    • SHA512

      f34a9af266430d7f75b042d8a5d123918bf9daba36f0d883509be9a35d4cbc2e6d764a4c9539441cad4b9f27b5473ee7dfc70e020201fc0acec7c4bbda6ee051

    • SSDEEP

      3072:HZ3KSK8CzJbaoigYfc0DV+1BIyLK5jZWlfXXqyYw:HVna93i1+fIyG5jZkCw

    • Adds autorun key to be loaded by Explorer.exe on startup

    • njRAT/Bladabindi

      Widely used RAT written in .NET.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks