General
Static task
static1
URLScan task
urlscan1
Sample
https://youtube.com
Malware Config
Extracted
Family
njrat
Version
0.7d
Botnet
Slaves
C2
hom135.ddns.net:100
Mutex
d4903fdacbb79e6cd1109a741a2bc821
d4903fdacbb79e6cd1109a741a2bc821
Attributes
-
reg_key
d4903fdacbb79e6cd1109a741a2bc821
-
splitter
|'|'|
Targets
-
-
Executes dropped EXE
-
Modifies Windows Firewall
-
Drops startup file
-
Adds Run key to start application
-
Suspicious use of SetThreadContext