Overview

overview

10

Static

static

3

f0f443b731...18.exe

windows7-x64

10

f0f443b731...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f0f443b7318c5dedb0c61ffc26e02c2c_JaffaCakes118

  • Size

    25KB

  • Sample

    240922-a7n5psteqb

  • MD5

    f0f443b7318c5dedb0c61ffc26e02c2c

  • SHA1

    5ea76e22b0c9f4feda7251964f8a1245ba49430a

  • SHA256

    02ee0ae6baf57467721232f6dec5affcb0ef7c60fd79c7128a15f8ccdea84d5a

  • SHA512

    04efc80427c30411eedf7fc81f8b82e2071da0b5e5a8a198fda85c921342c0a0ea6cb48d43f4002f6e25d1ffc97666bd9855fb2239305d82b5f9f85dbaa74a1e

  • SSDEEP

    384:sv3ZIN+34K/NzM9wZCRybdOe3SCQFODfvUVuX8k56RZKN8TNrjU+yTgVzJ:svpdISz5ZDMmDb9B0Qu5U+ysNJ

Score
10/10
njrathackedtrojan

Malware Config

Extracted

Family

njrat

Version

Njrat 0.7 Golden By Hassan Amiri

Botnet

HacKed

C2

25.93.215.70:7777

Mutex

Windows Update

Attributes
  • reg_key

    Windows Update

  • splitter

    |Hassan|

Targets

    • Target

      f0f443b7318c5dedb0c61ffc26e02c2c_JaffaCakes118

    • Size

      25KB

    • MD5

      f0f443b7318c5dedb0c61ffc26e02c2c

    • SHA1

      5ea76e22b0c9f4feda7251964f8a1245ba49430a

    • SHA256

      02ee0ae6baf57467721232f6dec5affcb0ef7c60fd79c7128a15f8ccdea84d5a

    • SHA512

      04efc80427c30411eedf7fc81f8b82e2071da0b5e5a8a198fda85c921342c0a0ea6cb48d43f4002f6e25d1ffc97666bd9855fb2239305d82b5f9f85dbaa74a1e

    • SSDEEP

      384:sv3ZIN+34K/NzM9wZCRybdOe3SCQFODfvUVuX8k56RZKN8TNrjU+yTgVzJ:svpdISz5ZDMmDb9B0Qu5U+ysNJ

    Score
    10/10
    njrathackedtrojan

    • njRAT/Bladabindi

      Widely used RAT written in .NET.

      trojannjrat
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks