njrat | 26cd492b508a81f4066fd2fdec29f38e3fff456b613d8e276e1ba43eadb622a2 | Triage

Sharing

General

Target

Server.exe
Size

51KB
Sample

241027-xnnq6aykdl
MD5

2a89b427e10511467cf742eba3758675
SHA1

19d85fe11811f595a82c5e621decbc80f1602f0e
SHA256

26cd492b508a81f4066fd2fdec29f38e3fff456b613d8e276e1ba43eadb622a2
SHA512

f9151cc648668da33f3a845817eb7ee9871f2954d7042a0fae218c80087735bec1734a226ed16eefa168c07971d24f826039d329c29055c9f4252553fad8242b
SSDEEP

768:BDId3QTv3wXTr2/4fsR5JP7eK69dA/BJf6yy:1Idg7+HpfsRqz9OJiz

Score

10^/10

njrat discovery trojan

Malware Config

Extracted

Family

njrat

Version

njRAT v0.7d Edition Syria

C2

विनी蒂I3LjमेuविनीC4x:NताU1粹g==

Mutex

Windows Update

Attributes

reg_key
Windows Update
splitter
|'|'|

Targets

- Target
  
  Server.exe
- Size
  
  51KB
- MD5
  
  2a89b427e10511467cf742eba3758675
- SHA1
  
  19d85fe11811f595a82c5e621decbc80f1602f0e
- SHA256
  
  26cd492b508a81f4066fd2fdec29f38e3fff456b613d8e276e1ba43eadb622a2
- SHA512
  
  f9151cc648668da33f3a845817eb7ee9871f2954d7042a0fae218c80087735bec1734a226ed16eefa168c07971d24f826039d329c29055c9f4252553fad8242b
- SSDEEP
  
  768:BDId3QTv3wXTr2/4fsR5JP7eK69dA/BJf6yy:1Idg7+HpfsRqz9OJiz
Score

10^/10

njrat discovery trojan
- Njrat family
  njrat
- njRAT/Bladabindi
  Widely used RAT written in .NET.
  trojan njrat
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

njratdiscoverytrojan