General
-
Target
91eac047cf1d9c96af9c6ade8bd3904b827e8ddd373a5c92ac6d1a55bdb69c11
-
Size
75KB
-
Sample
210906-hjpekadgdk
-
MD5
84f9b3ff127dc38eacd42da00e080dee
-
SHA1
7dfcd750a7ecbfff358802ac7365477dab8b9aba
-
SHA256
91eac047cf1d9c96af9c6ade8bd3904b827e8ddd373a5c92ac6d1a55bdb69c11
-
SHA512
aa9495231d7506936806eae0f2306ec7ecee44752e681ce39c84f37f15eb7f143c32912ba8d4f72a7992ec764f1f9b9ae7e1d1239b6df71c2ecbff9abd9306c5
Static task
static1
Behavioral task
behavioral1
Sample
91eac047cf1d9c96af9c6ade8bd3904b827e8ddd373a5c92ac6d1a55bdb69c11.exe
Resource
win7v20210408
Behavioral task
behavioral2
Sample
91eac047cf1d9c96af9c6ade8bd3904b827e8ddd373a5c92ac6d1a55bdb69c11.exe
Resource
win10-en
Malware Config
Extracted
njrat
0.7d
HacKed
192.168.0.220:5552
cf380edbb9022cc313e8604499552980
-
reg_key
cf380edbb9022cc313e8604499552980
-
splitter
|'|'|
Targets
-
-
Target
91eac047cf1d9c96af9c6ade8bd3904b827e8ddd373a5c92ac6d1a55bdb69c11
-
Size
75KB
-
MD5
84f9b3ff127dc38eacd42da00e080dee
-
SHA1
7dfcd750a7ecbfff358802ac7365477dab8b9aba
-
SHA256
91eac047cf1d9c96af9c6ade8bd3904b827e8ddd373a5c92ac6d1a55bdb69c11
-
SHA512
aa9495231d7506936806eae0f2306ec7ecee44752e681ce39c84f37f15eb7f143c32912ba8d4f72a7992ec764f1f9b9ae7e1d1239b6df71c2ecbff9abd9306c5
Score10/10-
Executes dropped EXE
-
Modifies Windows Firewall
-
Drops startup file
-
Loads dropped DLL
-
Adds Run key to start application
-