Static task
static1
Behavioral task
behavioral1
Sample
Server.exe
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
Server.exe
Resource
win10v2004-20220414-en
General
-
Target
Server.bin
-
Size
93KB
-
MD5
edaf154b94f8808071e089661c89412e
-
SHA1
31b1c1eefe489f1f348002d5b01870b268b24ca0
-
SHA256
20184619a871dccba37b64770f1ce258c11b1406302b7d8f0a1c2957c4bcd393
-
SHA512
8461f866a721daf7d78e4b942f6c73a89db84edc3fdef34aa5e2fc4f5bb5d43c57bba9b7d164819cd2fd9f155e946439e9a9ab1ff9bcbc5f1dbedf406314c0ae
-
SSDEEP
768:rY3c2djeG7B2s5gw7bz//z6Ge3wUEXv8sAm7gglA6XxrjEtCdnl2pi1Rz4Rk3jIh:B2RemJj/rJegdxgojEwzGi1dD8DBgS
Malware Config
Extracted
njrat
0.7d
HacKed By CobrA 217
Y29icmFzc3Nzc3Nzc3Nzcy5kZG5zLm5ldAStrikStrik:MTE3Nw==
3a080181c5938cd7611a562e79328fc0
-
reg_key
3a080181c5938cd7611a562e79328fc0
-
splitter
|'|'|
Signatures
-
Njrat family
Files
-
Server.bin.exe windows x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 92KB - Virtual size: 91KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ