njrat | 718e6d5fa27ff0d30a9101f3c0e7846a88493f2cf45ebd4e5f3375e96c290771 | Triage

Sharing

General

Target

da0890c06e64805c56bdd28b87135572_JaffaCakes118
Size

154KB
Sample

240911-k7njaasenn
MD5

da0890c06e64805c56bdd28b87135572
SHA1

1b4e2dab8e89050bdf09df403876630cf73d4871
SHA256

718e6d5fa27ff0d30a9101f3c0e7846a88493f2cf45ebd4e5f3375e96c290771
SHA512

271581251e18967e47a64395a7909738cfeb9dc2d319f0a866c5bb66a66d3162ad7360c0dff045d5bce206f0b7eda4a73ea53c5ffb7cd8ac223214029d6c8423
SSDEEP

384:vRhJabFqMYX863PXlL4aFc/NjKLprfcPIeMFI6/1L6w2DFikpcCRu9L1wwAf4J7K:ZhJGIMYs6/Pc/fX8mk1H1hpE

Score

10^/10

njrat b hat trojan

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

B HAT

Mutex

f9da7cbb82fc486c908ea82600db03cb

Attributes

reg_key
f9da7cbb82fc486c908ea82600db03cb
splitter
|'|'|

Targets

- Target
  
  da0890c06e64805c56bdd28b87135572_JaffaCakes118
- Size
  
  154KB
- MD5
  
  da0890c06e64805c56bdd28b87135572
- SHA1
  
  1b4e2dab8e89050bdf09df403876630cf73d4871
- SHA256
  
  718e6d5fa27ff0d30a9101f3c0e7846a88493f2cf45ebd4e5f3375e96c290771
- SHA512
  
  271581251e18967e47a64395a7909738cfeb9dc2d319f0a866c5bb66a66d3162ad7360c0dff045d5bce206f0b7eda4a73ea53c5ffb7cd8ac223214029d6c8423
- SSDEEP
  
  384:vRhJabFqMYX863PXlL4aFc/NjKLprfcPIeMFI6/1L6w2DFikpcCRu9L1wwAf4J7K:ZhJGIMYs6/Pc/fX8mk1H1hpE
Score

10^/10

njrat b hat trojan
- njRAT/Bladabindi
  Widely used RAT written in .NET.
  trojan njrat
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

njratb hattrojan

behavioral2

njratb hattrojan