036a814548919dc7c3be1fb833e06b17d7936d8af02404570e0c4d371a4d11b9 | Triage

Submit
Reports

Overview

overview

Static

static

036a814548...b9.exe

windows7-x64

036a814548...b9.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

036a814548919dc7c3be1fb833e06b17d7936d8af02404570e0c4d371a4d11b9.exe

Resource

win7-20220812-en

njrat ~©~_mr a,~®~trojan

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

036a814548919dc7c3be1fb833e06b17d7936d8af02404570e0c4d371a4d11b9.exe

Resource

win10v2004-20220812-en

njrat ~©~_mr a,~®~evasion persistence trojan

windows10-2004-x64

10 signatures

150 seconds

General

Target

036a814548919dc7c3be1fb833e06b17d7936d8af02404570e0c4d371a4d11b9
Size

163KB
MD5

6d975ab77c4fde61d0ae7715060b150d
SHA1

24ab306fe636bec79450a6946cde1a2a173bc271
SHA256

036a814548919dc7c3be1fb833e06b17d7936d8af02404570e0c4d371a4d11b9
SHA512

c3ebe65e9ee23646b90dcc076e1b7e48bf254f65e50bc06e51f34e0f4598c9ac44a2c0e81a2a07e1d62068ce926b192b7439edf29d00cb6650db72fec561542f
SSDEEP

1536:TI4trop4kGEKz78HWP+NT+5eMTDmcnysIuaUNTe1r2KwRf00000000400000000H:TI4trA42KQi5eKnyDuTKKTllGmVR/i

Score

N/A

Malware Config

Signatures

Files

036a814548919dc7c3be1fb833e06b17d7936d8af02404570e0c4d371a4d11b9
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Code Sign

21:01:76:e5:da:90:cf:af:41:48:34:cf:a4:27:36:10
Certificate

Issuer

CN=SKYPE\\Ben

Not Before

03/01/2014, 02:20

Not After

03/01/2015, 08:20

Subject

CN=SKYPE\\Ben

81:c9:72:d8:43:eb:da:98:af:e1:cc:10:63:67:a0:76:d1:a0:de:5c
Signer

Actual PE Digest

81:c9:72:d8:43:eb:da:98:af:e1:cc:10:63:67:a0:76:d1:a0:de:5c

Digest Algorithm

sha1

PE Digest Matches

true

Signature Validations

Trusted

false

Verification

Signing Certificate

CN=SKYPE\\Ben

03/10/2022, 12:52
Valid: false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 156KB - Virtual size: 155KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy