njrat | 49c0e3bbb59d81bad201d19c17c77a77f12253be70782b409d57cd2c4df7d190 | Triage

Submit
Reports

Overview

overview

Static

static

49c0e3bbb5...90.exe

windows7_x64

8

49c0e3bbb5...90.exe

windows10-2004_x64

8

Sharing

Static task

static1

roblox cheat.exe njrat

Behavioral task

behavioral1

Sample

49c0e3bbb59d81bad201d19c17c77a77f12253be70782b409d57cd2c4df7d190.exe

Resource

win7-20220414-en

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

49c0e3bbb59d81bad201d19c17c77a77f12253be70782b409d57cd2c4df7d190.exe

Resource

win10v2004-20220414-en

windows10-2004_x64

0 signatures

0 seconds

General

Target

49c0e3bbb59d81bad201d19c17c77a77f12253be70782b409d57cd2c4df7d190
Size

37KB
MD5

555c42a4d6cee75f5b74bb20ff6dc65c
SHA1

9b5856345e889808b23bb4e1408684d7082c7b08
SHA256

49c0e3bbb59d81bad201d19c17c77a77f12253be70782b409d57cd2c4df7d190
SHA512

995de3f70a892312b0c50d219e9c40e508811be5e486d8c71e075197d2e070bf31acc66baa07d392db0fed9c8bf185e88b9dc8a277deadbadbc7df12ff9f044d
SSDEEP

768:MhTqPZ4J/kPKcFIXqVYCrM+rMRa8NuuaOt:MhTqPZ4JcLiXqG9+gRJNu

Score

10^/10

roblox cheat.exe njrat

Malware Config

Extracted

Family

njrat

Version

im523

Botnet

Roblox Cheat.exe

C2

127.0.0.1,127.0.0.1,127.0.0.1,127.0.0.1,,433.0.0.1,127.0.0.1:200

Mutex

bcbd8419906332378eec2f06c03cd62e

Attributes

reg_key
bcbd8419906332378eec2f06c03cd62e
splitter
|'|'|

Signatures

Njrat family
njrat

Files

49c0e3bbb59d81bad201d19c17c77a77f12253be70782b409d57cd2c4df7d190
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 35KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 576B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy