njrat | bCC5[.]exe | Triage

Submit
Reports

Overview

overview

Static

static

bCC5.exe

windows7_x64

bCC5.exe

windows10-2004_x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

bCC5.exe

Resource

win7-20220414-en

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

bCC5.exe

Resource

win10v2004-20220414-en

windows10-2004_x64

0 signatures

0 seconds

General

Target

bCC5.exe
Size

36KB
MD5

53674af745017761f1aa916313155354
SHA1

8029b5d289266493bb9c064188e7e9680703d0c4
SHA256

f1df9d46ece8c0d69d030b4f8c43ee2d796aa0cb76c7573baddd6f792cd5b525
SHA512

a500bd8a25427ec87a7a8fa8d217d24b7bab3f195338596c0b458cf79fdca3e1ed6fa3da83de2518d24b253ac16aaf0a10f04342f874292cb8ed2c3c1e20ff37
SSDEEP

384:cBJr6eSnfNzVWv/TsLUtvl8Xe+mzPLTCn2Ie2Ue/j5odLtIanrEp0U:cRSnFGLso/8XTTq1hnez

Score

10^/10

hacked njrat

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

HacKed

C2

https://pastebin.com/raw/xEw1j6fY:5552

Mutex

6a2634340fbf8a0a2c038c6263d49fd1

Attributes

reg_key
6a2634340fbf8a0a2c038c6263d49fd1
splitter
|'|'|

Signatures

Njrat family
njrat

Files

bCC5.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 672B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy