njrat | 1f2ae650fdefb75fd7775dd7ad86aa81ca7d19595f58b4a07b32a6502079d815 | Triage

Sharing

General

Target

1f2ae650fdefb75fd7775dd7ad86aa81ca7d19595f58b4a07b32a6502079d815.exe
Size

32KB
Sample

240928-j7arrawarq
MD5

24cc1404f53045420a81c054d26daec7
SHA1

986f83fa51663d0f551ea0dc838265d0c23283e9
SHA256

1f2ae650fdefb75fd7775dd7ad86aa81ca7d19595f58b4a07b32a6502079d815
SHA512

de42f387157436eada861078fc799605167795ca3726d123b1ecc8996b618fde13e0b26c6597146d355e1b6ccc808d721f76ef85efeba2ebcf66f8d06520f8ab
SSDEEP

384:ll3kcQnkUoSsJGG5ZfB3yIwt4U3Qu0/7FTgPtTFAqzmVsSiA:lWcQneSwP5ZRs4U3CegsM

Score

10^/10

njrat b hat discovery trojan

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

B HAT

Mutex

cd1f49ff557041b28396a032e2b161ee

Attributes

reg_key
cd1f49ff557041b28396a032e2b161ee
splitter
|'|'|

Targets

- Target
  
  1f2ae650fdefb75fd7775dd7ad86aa81ca7d19595f58b4a07b32a6502079d815.exe
- Size
  
  32KB
- MD5
  
  24cc1404f53045420a81c054d26daec7
- SHA1
  
  986f83fa51663d0f551ea0dc838265d0c23283e9
- SHA256
  
  1f2ae650fdefb75fd7775dd7ad86aa81ca7d19595f58b4a07b32a6502079d815
- SHA512
  
  de42f387157436eada861078fc799605167795ca3726d123b1ecc8996b618fde13e0b26c6597146d355e1b6ccc808d721f76ef85efeba2ebcf66f8d06520f8ab
- SSDEEP
  
  384:ll3kcQnkUoSsJGG5ZfB3yIwt4U3Qu0/7FTgPtTFAqzmVsSiA:lWcQneSwP5ZRs4U3CegsM
Score

10^/10

njrat discovery trojan
- njRAT/Bladabindi
  Widely used RAT written in .NET.
  trojan njrat
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

njratdiscoverytrojan

behavioral2

njratdiscoverytrojan