njrat | 16e9f3571d15716cedc9a1d33b02c2982ddd16a88cede5b2c7d167ef4521a19c | Triage

Sharing

General

Target

e88e6c146661e7e39010ade3294b50bf_JaffaCakes118
Size

32KB
Sample

240918-hp3t5sycqn
MD5

e88e6c146661e7e39010ade3294b50bf
SHA1

9652fb6a75e1c4112c5fbda19ebfc36351089a06
SHA256

16e9f3571d15716cedc9a1d33b02c2982ddd16a88cede5b2c7d167ef4521a19c
SHA512

a798cf1e80151004c08a6c3d0a6d8993b9f9e27f80f727a1633ca6d50b07eed5083d532cd52ddc86c1dcadbfaeba50bddd5d3dd5a401f9150077d26406494130
SSDEEP

384:JCbP3tSX6vBq7lazgEwkvQqDpy5Q1Q0YtQWTItebrOFeqzCi6d:mS6vBqMzGkI8p369rw6d

Score

10^/10

njrat discovery

Malware Config

Extracted

Family

njrat

C2

173.225.115.127:4444

Mutex

9c16d631e45f46f

Attributes

reg_key
9c16d631e45f46f
splitter
@!#&^%$

Targets

- Target
  
  e88e6c146661e7e39010ade3294b50bf_JaffaCakes118
- Size
  
  32KB
- MD5
  
  e88e6c146661e7e39010ade3294b50bf
- SHA1
  
  9652fb6a75e1c4112c5fbda19ebfc36351089a06
- SHA256
  
  16e9f3571d15716cedc9a1d33b02c2982ddd16a88cede5b2c7d167ef4521a19c
- SHA512
  
  a798cf1e80151004c08a6c3d0a6d8993b9f9e27f80f727a1633ca6d50b07eed5083d532cd52ddc86c1dcadbfaeba50bddd5d3dd5a401f9150077d26406494130
- SSDEEP
  
  384:JCbP3tSX6vBq7lazgEwkvQqDpy5Q1Q0YtQWTItebrOFeqzCi6d:mS6vBqMzGkI8p369rw6d
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2