General

  • Target

    xhm4wgmcMRkP.exe

  • Size

    32KB

  • MD5

    a7b625e123c5b6c714f664e60473d237

  • SHA1

    5388dfc581c1913d5055436eba351af5b3ae585b

  • SHA256

    4625b1f6546a9ead13f9cfde4bfa29c431d32b76dd5efd7bedbf1adebde07272

  • SHA512

    208eff499648b644b19a4643dcb00d48dc7907e17592ba4a15ccc787847d3a9696a62e2e6947fb260eea4d60fbfb49e15896fbb02a7b41d4a3af693197fd315e

  • SSDEEP

    384:m0bUe5XB4e0XGOfO3HdqlzkB8N/uWTHtTUFQqzFOObbPf:nT9BuVqdKTsbH

Score
10/10

Malware Config

Extracted

Family

njrat

Version

0.7NC

Botnet

NYAN CAT

C2

4Mekey.myftp.biz:2411

Mutex

3af50294de404d7

Attributes
  • reg_key

    3af50294de404d7

  • splitter

    @!#&^%$

Signatures

Files

  • xhm4wgmcMRkP.exe
    .exe windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections