njrat | bd7919245366d0c6abf156e6d7fbe80c7da0d997a6b67f47c4d570bb158cdbd9 | Triage

Sharing

General

Target

bd7919245366d0c6abf156e6d7fbe80c7da0d997a6b67f47c4d570bb158cdbd9.exe
Size

23KB
Sample

250107-2bc64stlgn
MD5

2984799cd447f093478939d87939b065
SHA1

f60fd4a182d6c0b132ae2e5aebf4174aef817b25
SHA256

bd7919245366d0c6abf156e6d7fbe80c7da0d997a6b67f47c4d570bb158cdbd9
SHA512

0807b68ba6a3a505c59604963d70673773554cd5b9827b2cee1c570bf914eda2a02c2ed0c5ca864c38843c2bca6ca2a61d76f1860b2d169eff7c26c58ebddaed
SSDEEP

384:ec6CqbFYh3odrVCGiHssDB4b6i6fgpEupNXRmRvR6JZlbw8hqIusZzZMV0r:xIU0tw3Rpcnucr

Score

10^/10

njrat alialitaly

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

ALIALITALY

C2

SkypeTcp.no-ip.biz:95

Mutex

a8222704e50eaec7b16bac0b7b54fc4b

Attributes

reg_key
a8222704e50eaec7b16bac0b7b54fc4b
splitter
|'|'|

Targets

- Target
  
  bd7919245366d0c6abf156e6d7fbe80c7da0d997a6b67f47c4d570bb158cdbd9.exe
- Size
  
  23KB
- MD5
  
  2984799cd447f093478939d87939b065
- SHA1
  
  f60fd4a182d6c0b132ae2e5aebf4174aef817b25
- SHA256
  
  bd7919245366d0c6abf156e6d7fbe80c7da0d997a6b67f47c4d570bb158cdbd9
- SHA512
  
  0807b68ba6a3a505c59604963d70673773554cd5b9827b2cee1c570bf914eda2a02c2ed0c5ca864c38843c2bca6ca2a61d76f1860b2d169eff7c26c58ebddaed
- SSDEEP
  
  384:ec6CqbFYh3odrVCGiHssDB4b6i6fgpEupNXRmRvR6JZlbw8hqIusZzZMV0r:xIU0tw3Rpcnucr
Score

1^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

alialitalynjrat

behavioral1

behavioral2