njrat | 64163a051aec95207115a88d45fab57751d72334883d75b4c57d25064d074019 | Triage

Sharing

General

Target

ReO .exe
Size

27KB
Sample

240919-yvj7zsxgnf
MD5

fd123a231f334ae803146654ebffc7ec
SHA1

3865e5cf4a18d226403242b69ef56ed4b90a2ec3
SHA256

64163a051aec95207115a88d45fab57751d72334883d75b4c57d25064d074019
SHA512

208ef208266872792bbccf492e3e49ed06aa221af9d866f280f41c17e758df903b1b9a80962eb73506df6f572146a67b1aa36d83eca65f1357612110c1169c84
SSDEEP

384:nLcrPbNnO4Y1JeRGJzh+FP75BXMiAQk93vmhm7UMKmIEecKdbXTzm9bVhcawQ9rK:LOPbw7AytiA/vMHTi9bDk

Score

10^/10

njrat hacked discovery

Malware Config

Extracted

Family

njrat

Version

v2.0

Botnet

HacKed

C2

:5552

Mutex

Windows

Attributes

reg_key
Windows
splitter
|-F-|

Targets

- Target
  
  ReO .exe
- Size
  
  27KB
- MD5
  
  fd123a231f334ae803146654ebffc7ec
- SHA1
  
  3865e5cf4a18d226403242b69ef56ed4b90a2ec3
- SHA256
  
  64163a051aec95207115a88d45fab57751d72334883d75b4c57d25064d074019
- SHA512
  
  208ef208266872792bbccf492e3e49ed06aa221af9d866f280f41c17e758df903b1b9a80962eb73506df6f572146a67b1aa36d83eca65f1357612110c1169c84
- SSDEEP
  
  384:nLcrPbNnO4Y1JeRGJzh+FP75BXMiAQk93vmhm7UMKmIEecKdbXTzm9bVhcawQ9rK:LOPbw7AytiA/vMHTi9bDk
Score

7^/10

discovery
- Drops startup file
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1