njrat | a78a8ba6bd378fceb61936aec9b0880fcc01a39e99452a87bf99b4e068af5d89 | Triage

Sharing

General

Target

JaffaCakes118_73e5ec1339a078f296e3edf9b8094189
Size

24KB
Sample

250103-236mqsykcs
MD5

73e5ec1339a078f296e3edf9b8094189
SHA1

2599575b751c9a93e6934f02193647a1d3415e67
SHA256

a78a8ba6bd378fceb61936aec9b0880fcc01a39e99452a87bf99b4e068af5d89
SHA512

5a3b83820d0093f53a2786ac4957e75cf18de48332e95fbb81f0213324caaca051409e4546418949987e9e2c190834f7fa48344685a3ee082ae116f4e2db644c
SSDEEP

384:S7/dYhFd7WUqIK2pXG4+/SjoHRNQ1qpxr5Jb7E/6mwc0Ny33WVNtfOtTac8vvi:odMyrmpW4U4oxKIxr5lbJy4ly

Score

10^/10

njrat discovery

Malware Config

Extracted

Family

njrat

Version

PRIVATE

C2

127.0.0.1:3399

Mutex

165d6ed988ac

Attributes

reg_key
165d6ed988ac
splitter
|'|'|

Targets

- Target
  
  JaffaCakes118_73e5ec1339a078f296e3edf9b8094189
- Size
  
  24KB
- MD5
  
  73e5ec1339a078f296e3edf9b8094189
- SHA1
  
  2599575b751c9a93e6934f02193647a1d3415e67
- SHA256
  
  a78a8ba6bd378fceb61936aec9b0880fcc01a39e99452a87bf99b4e068af5d89
- SHA512
  
  5a3b83820d0093f53a2786ac4957e75cf18de48332e95fbb81f0213324caaca051409e4546418949987e9e2c190834f7fa48344685a3ee082ae116f4e2db644c
- SSDEEP
  
  384:S7/dYhFd7WUqIK2pXG4+/SjoHRNQ1qpxr5Jb7E/6mwc0Ny33WVNtfOtTac8vvi:odMyrmpW4U4oxKIxr5lbJy4ly
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2