njrat | 5da0b3305b8713321af3ba16212ed96674397261e2cacb63075025faeefc6993 | Triage

Sharing

General

Target

5da0b3305b8713321af3ba16212ed96674397261e2cacb63075025faeefc6993
Size

5.9MB
Sample

241006-1q36easanf
MD5

79e82aa7281d8ee8bd4cbb6ce3fa9d30
SHA1

7c6fc570af37e0c5864de4830d098b7f17b9723b
SHA256

5da0b3305b8713321af3ba16212ed96674397261e2cacb63075025faeefc6993
SHA512

a652a15282d229199508518d912b38d53da46f287de200595564644563c2be3e675005b84c5acc2456a8baf019fa832fee7431558dda209822f60dc8cffba8db
SSDEEP

12288:9Pt/nREznmTkZAP9WmIyXuwfYkI0MytARujKL8xSvEpZm:7oD0YkY

Score

10^/10

njrat nyan cat discovery

Malware Config

Extracted

Family

njrat

Version

0.7NC

Botnet

NYAN CAT

C2

seznam.hopto.org:5050

Mutex

7aadcc80e3

7aadcc80e3

Attributes

reg_key
7aadcc80e3
splitter
@!#&^%$

Targets

- Target
  
  5da0b3305b8713321af3ba16212ed96674397261e2cacb63075025faeefc6993
- Size
  
  5.9MB
- MD5
  
  79e82aa7281d8ee8bd4cbb6ce3fa9d30
- SHA1
  
  7c6fc570af37e0c5864de4830d098b7f17b9723b
- SHA256
  
  5da0b3305b8713321af3ba16212ed96674397261e2cacb63075025faeefc6993
- SHA512
  
  a652a15282d229199508518d912b38d53da46f287de200595564644563c2be3e675005b84c5acc2456a8baf019fa832fee7431558dda209822f60dc8cffba8db
- SSDEEP
  
  12288:9Pt/nREznmTkZAP9WmIyXuwfYkI0MytARujKL8xSvEpZm:7oD0YkY
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2