General

  • Target

    5fc3ea7c2a6935a68bffea1dcc68c587_JaffaCakes118

  • Size

    23KB

  • Sample

    241020-b52tfstbrl

  • MD5

    5fc3ea7c2a6935a68bffea1dcc68c587

  • SHA1

    bfbb3af34acab2d593351035da999705a79c2f08

  • SHA256

    ec466f14ecda40b49ad0333bb2bfbe8dbc0863e01f4af37fae0cf72cd7eb086d

  • SHA512

    9f80331534e6e62fe1b7748d7aab289767c88e51e8bc659cb30a4dbbca623e1588dec5c6cbdb86b4c1fa1d263691ac7630ef8a7252ade1fa5784df5068af60e5

  • SSDEEP

    384:jz2aUrue9BxVQR+eR31yuEecebUtw6jgF42JJzlmRvR6JZlbw8hqIusZzZBL:rQ/V0X1E9RpcnuS

Malware Config

Extracted

Family

njrat

Version

Hallaj PRO Rat [Fixed]

Botnet

ههه

C2

playwithme.onthewifi.com:1

Mutex

0ebfc821f3becd37f0256ba2fa5beb91

Attributes
  • reg_key

    0ebfc821f3becd37f0256ba2fa5beb91

  • splitter

    boolLove

Targets

    • Target

      5fc3ea7c2a6935a68bffea1dcc68c587_JaffaCakes118

    • Size

      23KB

    • MD5

      5fc3ea7c2a6935a68bffea1dcc68c587

    • SHA1

      bfbb3af34acab2d593351035da999705a79c2f08

    • SHA256

      ec466f14ecda40b49ad0333bb2bfbe8dbc0863e01f4af37fae0cf72cd7eb086d

    • SHA512

      9f80331534e6e62fe1b7748d7aab289767c88e51e8bc659cb30a4dbbca623e1588dec5c6cbdb86b4c1fa1d263691ac7630ef8a7252ade1fa5784df5068af60e5

    • SSDEEP

      384:jz2aUrue9BxVQR+eR31yuEecebUtw6jgF42JJzlmRvR6JZlbw8hqIusZzZBL:rQ/V0X1E9RpcnuS

    Score
    10/10
    • njRAT/Bladabindi

      Widely used RAT written in .NET.

MITRE ATT&CK Enterprise v15

Tasks