Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

febb8bb939...49.exe

windows7-x64

10

febb8bb939...49.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    febb8bb939db969aebc42c70ed6e96dff895b116fd049b6c4f85f9a90ad1bc49

  • Size

    240KB

  • Sample

    250204-jfelmaznhx

  • MD5

    6df5520cdae8ba7dbc37ad82e7a9295f

  • SHA1

    a8814cf76350dc1ecf79bc47fb9ca366695be621

  • SHA256

    febb8bb939db969aebc42c70ed6e96dff895b116fd049b6c4f85f9a90ad1bc49

  • SHA512

    749e4dc974b56eeaefd81f585dc26492404c836a804eebd368d2cd226688001fa26fb198e9da4fbf5db34014952c3561e373aef2001a60c0d6bb545e8112a84f

  • SSDEEP

    6144:3+x9BQjb3N0X9I2MeYwxzy8yfEn2/seQA:Oi3c9tMSyncneZ

Score
10/10
njratvictimtrojan

Malware Config

Extracted

Family

njrat

Version

<- NjRAT 0.7d Horror Edition ->

Botnet

Victim

C2

127.0.0.1:4444

Mutex

d099d73cec5e8c22e0945821b611e5d5

Attributes
  • reg_key

    d099d73cec5e8c22e0945821b611e5d5

  • splitter

    Y262SUCZ4UJJ

Targets

    • Target

      febb8bb939db969aebc42c70ed6e96dff895b116fd049b6c4f85f9a90ad1bc49

    • Size

      240KB

    • MD5

      6df5520cdae8ba7dbc37ad82e7a9295f

    • SHA1

      a8814cf76350dc1ecf79bc47fb9ca366695be621

    • SHA256

      febb8bb939db969aebc42c70ed6e96dff895b116fd049b6c4f85f9a90ad1bc49

    • SHA512

      749e4dc974b56eeaefd81f585dc26492404c836a804eebd368d2cd226688001fa26fb198e9da4fbf5db34014952c3561e373aef2001a60c0d6bb545e8112a84f

    • SSDEEP

      6144:3+x9BQjb3N0X9I2MeYwxzy8yfEn2/seQA:Oi3c9tMSyncneZ

    Score
    10/10
    njratvictimtrojan

    • Njrat family

      njrat

    • njRAT/Bladabindi

      Widely used RAT written in .NET.

      trojannjrat

    • Executes dropped EXE

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks