njrat | abba52ffba9b3bb26d04457540794603461ddc983a41dcaec693f85de6c18e47 | Triage

Sharing

General

Target

B523DBD5A1582E76263857967D404A03.exe
Size

745KB
Sample

240829-z4fftstdrm
MD5

b523dbd5a1582e76263857967d404a03
SHA1

b2fc6d57675cbd16b0af9375103f48fece087a73
SHA256

abba52ffba9b3bb26d04457540794603461ddc983a41dcaec693f85de6c18e47
SHA512

db5a17826a6b36bac9bade9532cbd6c7d793e296f7e6efaf4d67a0bd61c413a6fe834839095b61153cd0671a0a6339d9e130b1c0e50d7688846c13fa46cce8ec
SSDEEP

12288:82jVPPrBEQkNL1Aah+xwv1mpPCFxcQu/pQ9L+eVWXxJmYm:HVPriQkNxUw9yCFkQ9DVnY

Score

10^/10

njrat nyan cat discovery trojan

Malware Config

Extracted

Family

njrat

Version

0.7NC

Botnet

NYAN CAT

C2

seznam.hopto.org:5050

Mutex

ceeee3035a224

Attributes

reg_key
ceeee3035a224
splitter
@!#&^%$

Targets

- Target
  
  B523DBD5A1582E76263857967D404A03.exe
- Size
  
  745KB
- MD5
  
  b523dbd5a1582e76263857967d404a03
- SHA1
  
  b2fc6d57675cbd16b0af9375103f48fece087a73
- SHA256
  
  abba52ffba9b3bb26d04457540794603461ddc983a41dcaec693f85de6c18e47
- SHA512
  
  db5a17826a6b36bac9bade9532cbd6c7d793e296f7e6efaf4d67a0bd61c413a6fe834839095b61153cd0671a0a6339d9e130b1c0e50d7688846c13fa46cce8ec
- SSDEEP
  
  12288:82jVPPrBEQkNL1Aah+xwv1mpPCFxcQu/pQ9L+eVWXxJmYm:HVPriQkNxUw9yCFkQ9DVnY
Score

10^/10

njrat nyan cat discovery trojan
- njRAT/Bladabindi
  Widely used RAT written in .NET.
  trojan njrat
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

njratnyan catdiscoverytrojan

behavioral2

njratnyan catdiscoverytrojan