njrat | d9083880d4fc394283a1640392ddef37a72978800fe3e6cc25561369d888047a | Triage

Submit
Reports

Overview

overview

Static

static

svClient.exe

windows10-2004-x64

3

Sharing

General

Target

svClient.exe
Size

94KB
Sample

241119-elndhavndj
MD5

2ce6f0a9681d09ad541a00b640c4a7ce
SHA1

e3bac43991c9571cbfc516d9c2a2dc21bb5612c8
SHA256

d9083880d4fc394283a1640392ddef37a72978800fe3e6cc25561369d888047a
SHA512

57c0dc20fe771853f6d21654bd4ce7fb27ea60ee2bccac005779e6cec347628fd0b7b995aaab661a488c6511adcecf51d42545e7c2708ccaa100fef96ca36451
SSDEEP

1536:nAWCI6dorHYPvgNFoOE6jEwzGi1dDE3QDAgS:nAEuorHYPvgNJEDi1dI3Sp

Score

10^/10

njrat hacked discovery

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

svClient.exe

Resource

win10v2004-20241007-en

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

HacKed

C2

hakim32.ddns.net:2000

Mutex

3688fb7716958cb73bc079332aca2d72

Attributes

reg_key
3688fb7716958cb73bc079332aca2d72
splitter
|'|'|

Targets

- Target
  
  svClient.exe
- Size
  
  94KB
- MD5
  
  2ce6f0a9681d09ad541a00b640c4a7ce
- SHA1
  
  e3bac43991c9571cbfc516d9c2a2dc21bb5612c8
- SHA256
  
  d9083880d4fc394283a1640392ddef37a72978800fe3e6cc25561369d888047a
- SHA512
  
  57c0dc20fe771853f6d21654bd4ce7fb27ea60ee2bccac005779e6cec347628fd0b7b995aaab661a488c6511adcecf51d42545e7c2708ccaa100fef96ca36451
- SSDEEP
  
  1536:nAWCI6dorHYPvgNFoOE6jEwzGi1dDE3QDAgS:nAEuorHYPvgNJEDi1dI3Sp
Score

3^/10

discovery
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2024

Terms | Privacy