Overview

overview

10

Static

static

10

b18de694e1...78.exe

windows7-x64

10

b18de694e1...78.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b18de694e1bce31a1a5045ebdde17794bbf671b15adf232d177fbd1ce3c38078

  • Size

    55KB

  • MD5

    4098db341b02a3a8c82f7ef609513037

  • SHA1

    bda47505c3cb6ad1154447e49cf2bd8029061025

  • SHA256

    b18de694e1bce31a1a5045ebdde17794bbf671b15adf232d177fbd1ce3c38078

  • SHA512

    16446b04685ecc85ac08a11fbbcf0fd2f22d45b01535260d5f10801446f5224a82360e8ee6d484d60ddd8172c7807df5b4882277325666ce45318888ff763606

  • SSDEEP

    384:JoWSkWHa55BgDVRGipkItzY6vZg36Eh7FpmRvR6JZlbw8hqIusZzZ9pC/VtDbFpL:eJuk9pHRpcnuBj4qNSHq

Score
10/10
syria roomnjrat

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

syria room

C2

d5roooshe.ddns.net:1177

Mutex

0479f49105bca23bef6dbf3659f0740a

Attributes
  • reg_key

    0479f49105bca23bef6dbf3659f0740a

  • splitter

    |'|'|

Signatures

Files

  • b18de694e1bce31a1a5045ebdde17794bbf671b15adf232d177fbd1ce3c38078
    .exe windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections