njrat | 38c432174a3f8234fa103a7ca833483f800f36a8fa7b5377baab0c74bea19f86 | Triage

Sharing

General

Target

d673e4719c9631762e26779af439c710_JaffaCakes118
Size

32KB
Sample

240909-q79peatfmg
MD5

d673e4719c9631762e26779af439c710
SHA1

e9a9b08c15d61d1e6602219ab6940ef077d9bbd9
SHA256

38c432174a3f8234fa103a7ca833483f800f36a8fa7b5377baab0c74bea19f86
SHA512

e10aad9dced39c54500cf2fcfe7b23c1a7d9c62e68b9f21df6c82dca08e214513dcdce023ab3812acd07066e96bb29cc4cec88382da19e3734329c298c77924e
SSDEEP

384:6CbP3tSX6vBq7lazgEcsTQK/ecpfQBMlg2rWTvtebrOFeqzKRZq:fS6vBqMzCs0IecpyqVVrrZq

Score

10^/10

njrat discovery

Malware Config

Extracted

Family

njrat

C2

190.213.72.103:5005

Mutex

8598e9fde4

Attributes

reg_key
8598e9fde4
splitter
@!#&^%$

Targets

- Target
  
  d673e4719c9631762e26779af439c710_JaffaCakes118
- Size
  
  32KB
- MD5
  
  d673e4719c9631762e26779af439c710
- SHA1
  
  e9a9b08c15d61d1e6602219ab6940ef077d9bbd9
- SHA256
  
  38c432174a3f8234fa103a7ca833483f800f36a8fa7b5377baab0c74bea19f86
- SHA512
  
  e10aad9dced39c54500cf2fcfe7b23c1a7d9c62e68b9f21df6c82dca08e214513dcdce023ab3812acd07066e96bb29cc4cec88382da19e3734329c298c77924e
- SSDEEP
  
  384:6CbP3tSX6vBq7lazgEcsTQK/ecpfQBMlg2rWTvtebrOFeqzKRZq:fS6vBqMzCs0IecpyqVVrrZq
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2