njrat | 0849a04475313ded82b88d305bf5ea393beb00102a0b0cb09033b4c9f3a5b2cb | Triage

Sharing

General

Target

73e5ec1339a078f296e3edf9b8094189.zip
Size

11KB
Sample

240906-3l8anstemf
MD5

19f81551a48c4f8fc31a41a1c0854b67
SHA1

29cfd2fe6cb383d9eb00aa7bd6af306164449956
SHA256

0849a04475313ded82b88d305bf5ea393beb00102a0b0cb09033b4c9f3a5b2cb
SHA512

72741eaf0c8855af8b79c17e1d4dbf2736ec79152c328fb236f59fc6eab6fe295aa0563b565d6dd4908230a0e3b389894f0e7c80b7bc189bc321d01a959ff236
SSDEEP

192:Vp/3+rXOcxAZxjhJ9QwFTTSg82MXVibFPSfz13fEL+emy1oAbAvneiGgySePXau2:L/36+cAfX9QwFnU2OSSfTSoNne6uPXa5

Score

10^/10

njrat discovery

Malware Config

Extracted

Family

njrat

Version

PRIVATE

C2

127.0.0.1:3399

Mutex

165d6ed988ac

Attributes

reg_key
165d6ed988ac
splitter
|'|'|

Targets

- Target
  
  a78a8ba6bd378fceb61936aec9b0880fcc01a39e99452a87bf99b4e068af5d89
- Size
  
  24KB
- MD5
  
  73e5ec1339a078f296e3edf9b8094189
- SHA1
  
  2599575b751c9a93e6934f02193647a1d3415e67
- SHA256
  
  a78a8ba6bd378fceb61936aec9b0880fcc01a39e99452a87bf99b4e068af5d89
- SHA512
  
  5a3b83820d0093f53a2786ac4957e75cf18de48332e95fbb81f0213324caaca051409e4546418949987e9e2c190834f7fa48344685a3ee082ae116f4e2db644c
- SSDEEP
  
  384:S7/dYhFd7WUqIK2pXG4+/SjoHRNQ1qpxr5Jb7E/6mwc0Ny33WVNtfOtTac8vvi:odMyrmpW4U4oxKIxr5lbJy4ly
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2