njrat | 2b3612eb432f0d386b66282d33cf4632b9046aa2772bad8ba7289740d9fbeada | Triage

Sharing

General

Target

NewClient.exe
Size

164KB
Sample

240929-3pgbcswepl
MD5

8f91ff6424f45a8e627d4c0f138ea57a
SHA1

9af628c435fa387b0b1d486a8239409ae42be227
SHA256

2b3612eb432f0d386b66282d33cf4632b9046aa2772bad8ba7289740d9fbeada
SHA512

7fd62d99f5dbe21c423ae389cda07a5ae98e17e805d0a66ed22404cf0efb356fdd04b7519f758a470576c6991f4e53881645f38c6fb1a04d7b1b5a1becded308
SSDEEP

3072:DibL/dEmP0If8IbsS31NPIuChLdEu9qcxkbGjMMOQvgBJt93:DiYJgQuChKUqBb/MbSJP3

Score

10^/10

njrat discovery

Malware Config

Targets

- Target
  
  NewClient.exe
- Size
  
  164KB
- MD5
  
  8f91ff6424f45a8e627d4c0f138ea57a
- SHA1
  
  9af628c435fa387b0b1d486a8239409ae42be227
- SHA256
  
  2b3612eb432f0d386b66282d33cf4632b9046aa2772bad8ba7289740d9fbeada
- SHA512
  
  7fd62d99f5dbe21c423ae389cda07a5ae98e17e805d0a66ed22404cf0efb356fdd04b7519f758a470576c6991f4e53881645f38c6fb1a04d7b1b5a1becded308
- SSDEEP
  
  3072:DibL/dEmP0If8IbsS31NPIuChLdEu9qcxkbGjMMOQvgBJt93:DiYJgQuChKUqBb/MbSJP3
Score

7^/10

discovery
- Drops startup file
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Scheduled Task

Persistence

Scheduled Task/Job

Scheduled Task

Privilege Escalation

Scheduled Task/Job

Scheduled Task

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2