Overview

overview

10

Static

static

10

1668-61-0x...ry.exe

windows7-x64

1

1668-61-0x...ry.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    1668-61-0x0000000000400000-0x000000000041A000-memory.dmp

  • Size

    104KB

  • MD5

    dd1b485ecfa047da88ed0cf67be47f1f

  • SHA1

    4f46fd79c117b1bcaa147260b5dd45d5843e06ff

  • SHA256

    c2f84198ad9238dd8d7b8d5be099206e197c065c7e5f320fe3d2aeed0af9dd0a

  • SHA512

    e26d678dec443bd6455cf37e819f986686e6c1f8fb1ff78659d10b9faa86c52cfd1a958015cbc0acec40961aa12928b8e09d09994b4387af36e26b9461cb7fed

  • SSDEEP

    1536:UGa+efzGj1RwVTqMDp8S5wpOk3JCK6pFo4jM6fOpd/9nEh9TG8J8Rg:0zCQwpOk5CK6hO/9ES8J86

Score
10/10
limenjrat

Malware Config

Extracted

Family

njrat

Version

0.7.3

Botnet

Lime

C2

assessment-epinions.at.playit.gg:24620

Mutex

Client.exe

Attributes
  • reg_key

    Client.exe

  • splitter

    123

Signatures

Files

  • 1668-61-0x0000000000400000-0x000000000041A000-memory.dmp
    .exe windows x86


    Headers

    Sections