General
-
Target
XbBhbN00.exe
-
Size
23KB
-
Sample
201126-lnf13gdy3n
-
MD5
037073f4657e7e473b426c45d705d241
-
SHA1
8456fbe243bccbb49fe0a439e408a8d0a38f06aa
-
SHA256
b5b78583e407d9c540c726147375c5e7f782196e7b0f96db5e5009081180f9ca
-
SHA512
f857b7fb5101fb3f978291932f258d5a8b30f4fd00faa5c496369458278b4c53d7360adbe1e0a0ef33cd04d5c7325eb1a9b07c37896959d587e9d99f768a5e96
Static task
static1
Behavioral task
behavioral1
Sample
XbBhbN00.exe
Resource
win7v20201028
Behavioral task
behavioral2
Sample
XbBhbN00.exe
Resource
win10v20201028
Malware Config
Extracted
njrat
0.7d
HacKed
103.231.222.39:6002
a73a0b3b1068cf8f0971852e1357f99f
-
reg_key
a73a0b3b1068cf8f0971852e1357f99f
-
splitter
|'|'|
Targets
-
-
Target
XbBhbN00.exe
-
Size
23KB
-
MD5
037073f4657e7e473b426c45d705d241
-
SHA1
8456fbe243bccbb49fe0a439e408a8d0a38f06aa
-
SHA256
b5b78583e407d9c540c726147375c5e7f782196e7b0f96db5e5009081180f9ca
-
SHA512
f857b7fb5101fb3f978291932f258d5a8b30f4fd00faa5c496369458278b4c53d7360adbe1e0a0ef33cd04d5c7325eb1a9b07c37896959d587e9d99f768a5e96
Score10/10-
Executes dropped EXE
-
Modifies Windows Firewall
-
Drops startup file
-
Loads dropped DLL
-
Adds Run key to start application
-