Behavioral task
behavioral1
Sample
d4140f5a775e00e0c378b273cafd99dc.exe
Resource
win7-en-20211014
windows7_x64
0 signatures
0 seconds
Behavioral task
behavioral2
Sample
d4140f5a775e00e0c378b273cafd99dc.exe
Resource
win10-en-20211104
windows10_x64
0 signatures
0 seconds
General
-
Target
d4140f5a775e00e0c378b273cafd99dc.exe
-
Size
43KB
-
MD5
d4140f5a775e00e0c378b273cafd99dc
-
SHA1
d2d01b17152b0b67db3e85f373a8da1ad15ecf5d
-
SHA256
90a325ecd04db2a368f38ffa53e4970f1df87674124b84a7d3bb82630483b499
-
SHA512
78c425c3c2d6586ed2b75b035c4edc832382da0acaa729f830e7fd8773abeb7de8eefbd62d307064a1beb5629902981382fc47460bfe64078b0f343de7240de3
Malware Config
Extracted
Family
njrat
Version
Njrat 0.7 Golden By Hassan Amiri
Botnet
gg
C2
4.tcp.ngrok.io:16574
Mutex
Windows Update
Attributes
-
reg_key
Windows Update
-
splitter
|Hassan|
Signatures
-
Njrat family
Files
-
d4140f5a775e00e0c378b273cafd99dc.exe.exe windows x86