Overview

overview

10

Static

static

10

bc3e318799...4c.exe

windows7-x64

8

bc3e318799...4c.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    bc3e318799303a80de34d04f7f6aa10789b1f255e79f3e943689048eae0e094c

  • Size

    37KB

  • Sample

    240920-p5tpqsxfqn

  • MD5

    d7714e5befa0a3f442d68db99b0ac6e6

  • SHA1

    b0428534d0cfd7b5994f74ddb5f124db5a7199d9

  • SHA256

    bc3e318799303a80de34d04f7f6aa10789b1f255e79f3e943689048eae0e094c

  • SHA512

    ef306b148a2fef87b36c4fdca6f97bf5e895c3595269b2a71dfb23f89c6dc1dcba0c628693341cdda2f87e2c8748a67c9d211e9b4f1757ce9ee0828b1a042e57

  • SSDEEP

    768:l/Yl2KhfIwdpszX1zaVufrM+rMRa8NuSCtt:l8Iwd+TtaAg+gRJN4

Score
10/10
njratwin.32discoveryevasionpersistenceprivilege_escalation

Malware Config

Extracted

Family

njrat

Version

im523

Botnet

win.32

C2

levels-plane.gl.at.ply.gg:53273

Mutex

65afbe4dfb648678c573ea3e7097c737

Attributes
  • reg_key

    65afbe4dfb648678c573ea3e7097c737

  • splitter

    |'|'|

Targets

    • Target

      bc3e318799303a80de34d04f7f6aa10789b1f255e79f3e943689048eae0e094c

    • Size

      37KB

    • MD5

      d7714e5befa0a3f442d68db99b0ac6e6

    • SHA1

      b0428534d0cfd7b5994f74ddb5f124db5a7199d9

    • SHA256

      bc3e318799303a80de34d04f7f6aa10789b1f255e79f3e943689048eae0e094c

    • SHA512

      ef306b148a2fef87b36c4fdca6f97bf5e895c3595269b2a71dfb23f89c6dc1dcba0c628693341cdda2f87e2c8748a67c9d211e9b4f1757ce9ee0828b1a042e57

    • SSDEEP

      768:l/Yl2KhfIwdpszX1zaVufrM+rMRa8NuSCtt:l8Iwd+TtaAg+gRJN4

    Score
    8/10
    discoveryevasionpersistenceprivilege_escalation
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks