njrat | 4ed234eefd1e69a914451a569475764b47e7faac34a1c374e9697cf6bb2c4de9 | Triage

Submit
Reports

Overview

overview

Static

static

4ed234eefd...e9.exe

windows7_x64

4ed234eefd...e9.exe

windows10-2004_x64

Sharing

Static task

static1

hacked by hidden person njrat

Behavioral task

behavioral1

Sample

4ed234eefd1e69a914451a569475764b47e7faac34a1c374e9697cf6bb2c4de9.exe

Resource

win7-20220414-en

njrat hacked by hidden person evasion persistence trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

4ed234eefd1e69a914451a569475764b47e7faac34a1c374e9697cf6bb2c4de9.exe

Resource

win10v2004-20220414-en

njrat hacked by hidden person evasion persistence trojan

windows10-2004_x64

0 signatures

0 seconds

General

Target

4ed234eefd1e69a914451a569475764b47e7faac34a1c374e9697cf6bb2c4de9
Size

32KB
MD5

a366a3b32e65335cf0f7a58e98ae18b2
SHA1

9a8a0ede01c7908e260e384fd41521b287e2971b
SHA256

4ed234eefd1e69a914451a569475764b47e7faac34a1c374e9697cf6bb2c4de9
SHA512

2e88d9758316cea99159b5adb1386921d034c254db86f101538a8ef3c82ec9047db62a437b63cead10f23686308757edfd730a6e2bc82434b4e5d80d67b43916
SSDEEP

384:VVit2wUQCG+JexvsiOrhAh9kLAZFPI+uT00olDModg9TdFpyFEIGsJjwE7UMcrih:eiGtUrrhAAA/iouDbEEIGfRv+f

Score

10^/10

hacked by hidden person njrat

Malware Config

Extracted

Family

njrat

Botnet

Hacked By HiDDen PerSOn

Mutex

138ffe906538d3e8fcc1b519e602532c

Attributes

reg_key
138ffe906538d3e8fcc1b519e602532c

Signatures

Njrat family
njrat

Files

4ed234eefd1e69a914451a569475764b47e7faac34a1c374e9697cf6bb2c4de9
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 30KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 576B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy