General
-
Target
ab00148c33790d85112a7bc1af206c05.exe
-
Size
43KB
-
Sample
211027-vxkprafgh7
-
MD5
ab00148c33790d85112a7bc1af206c05
-
SHA1
abbfa0d381484c186be0747f3027c7799eaaa7d9
-
SHA256
6fccf76fe3b419e6da88a6fddf207463355d1ba85a2858c46a11713331c39f5a
-
SHA512
8a2fe6f9c1b85bc7533253dd085cffd590d38456b92d7d04edcd62b0a5ccf40f3f6f1b078eb2e56d55f079cd2c82e0f27f77075b73aee6c7928be92d563c3a4d
Behavioral task
behavioral1
Sample
ab00148c33790d85112a7bc1af206c05.exe
Resource
win7-en-20211014
Behavioral task
behavioral2
Sample
ab00148c33790d85112a7bc1af206c05.exe
Resource
win10-en-20210920
Malware Config
Extracted
njrat
Njrat 0.7 Golden By Hassan Amiri
topher
savedat.duckdns.org:4782
Windows Update
-
reg_key
Windows Update
-
splitter
|Hassan|
Targets
-
-
Target
ab00148c33790d85112a7bc1af206c05.exe
-
Size
43KB
-
MD5
ab00148c33790d85112a7bc1af206c05
-
SHA1
abbfa0d381484c186be0747f3027c7799eaaa7d9
-
SHA256
6fccf76fe3b419e6da88a6fddf207463355d1ba85a2858c46a11713331c39f5a
-
SHA512
8a2fe6f9c1b85bc7533253dd085cffd590d38456b92d7d04edcd62b0a5ccf40f3f6f1b078eb2e56d55f079cd2c82e0f27f77075b73aee6c7928be92d563c3a4d
Score10/10-
Executes dropped EXE
-
Drops startup file
-
Loads dropped DLL
-
Adds Run key to start application
-