General
-
Target
4b4e6ce587df768d5f3530aa8c2a3a75.exe
-
Size
324KB
-
Sample
220222-kbaybaefb5
-
MD5
4b4e6ce587df768d5f3530aa8c2a3a75
-
SHA1
87169151f1c6b437966e5c54a683b3675d41af95
-
SHA256
dece4adf99e29edff4ef336fe6f7c40ffb90abd46514985ef86ef7c4fe5e94ed
-
SHA512
c060f9ce6594cfdd8043c16839bd6db65841b32288cffcec7fe21897611be76e0ae529d4668762478841d91ca6d4f74bbfbe109bb01ea3cfaaaeace1f47373db
Behavioral task
behavioral1
Sample
4b4e6ce587df768d5f3530aa8c2a3a75.exe
Resource
win7-en-20211208
Behavioral task
behavioral2
Sample
4b4e6ce587df768d5f3530aa8c2a3a75.exe
Resource
win10v2004-en-20220112
Malware Config
Extracted
njrat
0.7d
HacKed
127.0.0.1:7776
Windows Update
-
reg_key
Windows Update
-
splitter
|'|'|
Targets
-
-
Target
4b4e6ce587df768d5f3530aa8c2a3a75.exe
-
Size
324KB
-
MD5
4b4e6ce587df768d5f3530aa8c2a3a75
-
SHA1
87169151f1c6b437966e5c54a683b3675d41af95
-
SHA256
dece4adf99e29edff4ef336fe6f7c40ffb90abd46514985ef86ef7c4fe5e94ed
-
SHA512
c060f9ce6594cfdd8043c16839bd6db65841b32288cffcec7fe21897611be76e0ae529d4668762478841d91ca6d4f74bbfbe109bb01ea3cfaaaeace1f47373db
Score8/10-
Modifies Windows Firewall
-
Drops startup file
-
Adds Run key to start application
-