Behavioral task
behavioral1
Sample
DB0031942B3F6B1E7558E8754A068BE14F4FC11000F2E.exe
Resource
win7-en-20210920
windows7_x64
0 signatures
0 seconds
Behavioral task
behavioral2
Sample
DB0031942B3F6B1E7558E8754A068BE14F4FC11000F2E.exe
Resource
win10v20210408
windows10_x64
0 signatures
0 seconds
General
-
Target
DB0031942B3F6B1E7558E8754A068BE14F4FC11000F2E.exe
-
Size
43KB
-
MD5
6ef5711bfeba4212669fb6de0969b90f
-
SHA1
0b8c52c9fe50ae78bee2b0edab9bbd2c7fea54a8
-
SHA256
db0031942b3f6b1e7558e8754a068be14f4fc11000f2efd1139b985c2438d301
-
SHA512
c9ccb59c3391059035a450a6d05820238d32e68d0958a68acc8cbb21dac41705da10a01efdeaa340621a18b4e0b9414cb974b8acef3fb76e567683a1cac118cb
Malware Config
Extracted
Family
njrat
Version
Njrat 0.7 Golden By Hassan Amiri
Botnet
zombie
C2
zazs.codns.com:8080
Mutex
Windows Update
Attributes
-
reg_key
Windows Update
-
splitter
|Hassan|
Signatures
-
Njrat family
Files
-
DB0031942B3F6B1E7558E8754A068BE14F4FC11000F2E.exe.exe windows x86