General
-
Target
526bb9a7cfa4440e781c41f3041438924ac1585a5b8c83d9eeb4b23a7b5d308d
-
Size
25KB
-
Sample
220731-h9l25afddn
-
MD5
b24dbc4599f68ca571980900b3fd29e6
-
SHA1
8825a7e3aaa41d597a0e5209e8a6cedaa156d31c
-
SHA256
526bb9a7cfa4440e781c41f3041438924ac1585a5b8c83d9eeb4b23a7b5d308d
-
SHA512
bce4def09ea780901e74d9434f8bb5497cb29c16e806aa55c92802c71b2bdbfe178ab4a71fbcb8a0597fbce5679ec17a8cce8084e22853e089c90b436e857e54
Static task
static1
Behavioral task
behavioral1
Sample
526bb9a7cfa4440e781c41f3041438924ac1585a5b8c83d9eeb4b23a7b5d308d.exe
Resource
win7-20220718-en
Behavioral task
behavioral2
Sample
526bb9a7cfa4440e781c41f3041438924ac1585a5b8c83d9eeb4b23a7b5d308d.exe
Resource
win10v2004-20220721-en
Malware Config
Extracted
njrat
Njrat 0.7 Golden By Hassan Amiri
HacKed
127.0.0.1:5552
Windows Update
-
reg_key
Windows Update
-
splitter
|Hassan|
Targets
-
-
Target
526bb9a7cfa4440e781c41f3041438924ac1585a5b8c83d9eeb4b23a7b5d308d
-
Size
25KB
-
MD5
b24dbc4599f68ca571980900b3fd29e6
-
SHA1
8825a7e3aaa41d597a0e5209e8a6cedaa156d31c
-
SHA256
526bb9a7cfa4440e781c41f3041438924ac1585a5b8c83d9eeb4b23a7b5d308d
-
SHA512
bce4def09ea780901e74d9434f8bb5497cb29c16e806aa55c92802c71b2bdbfe178ab4a71fbcb8a0597fbce5679ec17a8cce8084e22853e089c90b436e857e54
Score10/10-
Executes dropped EXE
-
Drops startup file
-
Adds Run key to start application
-