General

  • Target

    xjgQwkqiHeju.exe

  • Size

    32KB

  • MD5

    8894c774d6739272d763dc08fa1f3eed

  • SHA1

    b15effb1b623690e661562d3381f49ec5b45e9fc

  • SHA256

    6aeec6592d3fe400a3523bf0a93d6d0b718bdcdc8c6fc6769cf39ff1a7a9535a

  • SHA512

    25a04e176c4ae9d9b3453f1d043ddbcf92339603824cfa948ff35b453e5fbf4aef8bd3665c26e12af1130ec61122d6ac7746a53f897553fbb890bf5ac28a4c04

  • SSDEEP

    384:30bUe5XB4e0XPOd+8784W+ozcwWTbtTUFQqz9NObbN:cT9BuGr784hRvbN

Score
10/10

Malware Config

Extracted

Family

njrat

Version

0.7NC

Botnet

NYAN CAT

C2

defenderos.con-ip.com:2427

Mutex

7976dde11c654a5

Attributes
  • reg_key

    7976dde11c654a5

  • splitter

    @!#&^%$

Signatures

Files

  • xjgQwkqiHeju.exe
    .exe windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections