njrat | 7190d2d0d312dbcff88983c0fd93b0100af1fc880dea847aba35188e3465c81d | Triage

Sharing

General

Target

7190d2d0d312dbcff88983c0fd93b0100af1fc880dea847aba35188e3465c81d.exe
Size

49KB
Sample

241124-bqtvasspfq
MD5

272e00ed89a593d788dc6454d7f2c0f4
SHA1

e6a6c8f32c83267523cf0bb2c946663c4912264c
SHA256

7190d2d0d312dbcff88983c0fd93b0100af1fc880dea847aba35188e3465c81d
SHA512

87e6fa2422ce62b9123702b90968168a3512ddc6551ece3327fa82d680a1d5f7e466d95e796f9a9c150f32dddd35628b1a9be3afb01c9b4ac17d454dc1277eb2
SSDEEP

1536:M8blGZjjDoEzPOfpB8KKRhHwzptAN+NJ6nXMcemhuhyn:M8bAzPOIbPHwzYN+NTdhyn

Score

10^/10

njrat mal discovery trojan

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

MAL

C2

12e1212:8888

Mutex

66e263e765a8ecf009ff45b8a895efff

Attributes

reg_key
66e263e765a8ecf009ff45b8a895efff
splitter
|'|'|

Targets

- Target
  
  7190d2d0d312dbcff88983c0fd93b0100af1fc880dea847aba35188e3465c81d.exe
- Size
  
  49KB
- MD5
  
  272e00ed89a593d788dc6454d7f2c0f4
- SHA1
  
  e6a6c8f32c83267523cf0bb2c946663c4912264c
- SHA256
  
  7190d2d0d312dbcff88983c0fd93b0100af1fc880dea847aba35188e3465c81d
- SHA512
  
  87e6fa2422ce62b9123702b90968168a3512ddc6551ece3327fa82d680a1d5f7e466d95e796f9a9c150f32dddd35628b1a9be3afb01c9b4ac17d454dc1277eb2
- SSDEEP
  
  1536:M8blGZjjDoEzPOfpB8KKRhHwzptAN+NJ6nXMcemhuhyn:M8bAzPOIbPHwzYN+NTdhyn
Score

10^/10

njrat mal discovery trojan
- Njrat family
  njrat
- njRAT/Bladabindi
  Widely used RAT written in .NET.
  trojan njrat
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

njratmaldiscoverytrojan

behavioral2