njrat | 0bb972809d4be266bdffd3692b34ba0bf27e01a000b935917f40ef19bf866525 | Triage

Submit
Reports

Overview

overview

Static

static

3

190a48f7e9...0N.exe

windows7-x64

190a48f7e9...0N.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

190a48f7e92629dc4105a4702662eb80N
Size

552KB
Sample

240908-dpyszasdjp
MD5

190a48f7e92629dc4105a4702662eb80
SHA1

bc6387114d8181c5d810262ce4b3aa96b52fb016
SHA256

0bb972809d4be266bdffd3692b34ba0bf27e01a000b935917f40ef19bf866525
SHA512

dc8633343886a4b730e873e60c8990f24c5bfcbc0e019d1135c852d90be02b644f7364aa9cc64e4a53ceb0d3da338cfeb4a6b49cddbf56b58f5269293781f648
SSDEEP

12288:R32kYn9YFZBsws0rwfQpP9p/yFUk6l6X3cWCauQWannR8fq:RGk69IS0rw4pP9p416QMaBnRCq

Score

10^/10

njrat oct discovery trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

190a48f7e92629dc4105a4702662eb80N.exe

Resource

win7-20240903-en

njrat oct discovery trojan

windows7-x64

9 signatures

120 seconds

Behavioral task

behavioral2

Sample

190a48f7e92629dc4105a4702662eb80N.exe

Resource

win10v2004-20240802-en

njrat oct discovery trojan

windows10-2004-x64

9 signatures

120 seconds

Malware Config

Extracted

Family

njrat

Version

0.7.3

Botnet

OCT

C2

film.royalprop.trade:8109

Mutex

update.exe

Attributes

reg_key
update.exe
splitter
0987

Targets

- Target
  
  190a48f7e92629dc4105a4702662eb80N
- Size
  
  552KB
- MD5
  
  190a48f7e92629dc4105a4702662eb80
- SHA1
  
  bc6387114d8181c5d810262ce4b3aa96b52fb016
- SHA256
  
  0bb972809d4be266bdffd3692b34ba0bf27e01a000b935917f40ef19bf866525
- SHA512
  
  dc8633343886a4b730e873e60c8990f24c5bfcbc0e019d1135c852d90be02b644f7364aa9cc64e4a53ceb0d3da338cfeb4a6b49cddbf56b58f5269293781f648
- SSDEEP
  
  12288:R32kYn9YFZBsws0rwfQpP9p/yFUk6l6X3cWCauQWannR8fq:RGk69IS0rw4pP9p416QMaBnRCq
Score

10^/10

njrat oct discovery trojan
- njRAT/Bladabindi
  Widely used RAT written in .NET.
  trojan njrat
- Drops startup file
- AutoIT Executable
  AutoIT scripts compiled to PE executables.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

njratoctdiscoverytrojan

behavioral2

njratoctdiscoverytrojan

© 2018-2025

Terms | Privacy