Resubmissions

04-11-2024 23:08

241104-242eea1rfn 10

04-11-2024 05:23

241104-f27yhstpbs 10

28-09-2024 10:19

240928-mcp5qssgma 10

General

  • Target

    4a3f69c2613f4a514b1c904f7e019990d68718fbfdbb6ffe2896c50489ea5814.exe

  • Size

    22KB

  • Sample

    240928-mcp5qssgma

  • MD5

    ee653dcd9ed87ec3319c0f443c8a54df

  • SHA1

    63a45f8da331e303a8ae7e93df190a4443a13b57

  • SHA256

    4a3f69c2613f4a514b1c904f7e019990d68718fbfdbb6ffe2896c50489ea5814

  • SHA512

    e9cd28d1f6d4d9ddff7943021e3795489941f419aabd649b378d5d0992316751c5418068983b5d26feb6178c2ace2c12dded94839d1f70c6e59682c26562f5e2

  • SSDEEP

    384:IsqS+ER6vRKXGYKRWVSujUtX9w6Dglo61Z5DVmRvR6JZlbw8hqIusZzZSZQ:/f65K2Yf1jKRpcnupQ

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

client

C2

akamaru.ddns.net:1605

Mutex

aa15bd929c7132fe8f63fd4d0ae48d6c

Attributes
  • reg_key

    aa15bd929c7132fe8f63fd4d0ae48d6c

  • splitter

    |'|'|

Targets

    • Target

      4a3f69c2613f4a514b1c904f7e019990d68718fbfdbb6ffe2896c50489ea5814.exe

    • Size

      22KB

    • MD5

      ee653dcd9ed87ec3319c0f443c8a54df

    • SHA1

      63a45f8da331e303a8ae7e93df190a4443a13b57

    • SHA256

      4a3f69c2613f4a514b1c904f7e019990d68718fbfdbb6ffe2896c50489ea5814

    • SHA512

      e9cd28d1f6d4d9ddff7943021e3795489941f419aabd649b378d5d0992316751c5418068983b5d26feb6178c2ace2c12dded94839d1f70c6e59682c26562f5e2

    • SSDEEP

      384:IsqS+ER6vRKXGYKRWVSujUtX9w6Dglo61Z5DVmRvR6JZlbw8hqIusZzZSZQ:/f65K2Yf1jKRpcnupQ

    • njRAT/Bladabindi

      Widely used RAT written in .NET.

MITRE ATT&CK Enterprise v15

Tasks