njrat | 221332d0df66d7228d91fc8cdb18afb1[.]exe | Triage

Submit
Reports

Overview

overview

Static

static

221332d0df...b1.exe

windows7-x64

8

221332d0df...b1.exe

windows10-2004-x64

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

221332d0df66d7228d91fc8cdb18afb1.exe

Resource

win7-20220812-en

evasion persistence

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

221332d0df66d7228d91fc8cdb18afb1.exe

Resource

win10v2004-20220812-en

njrat evasion persistence trojan

windows10-2004-x64

6 signatures

150 seconds

General

Target

221332d0df66d7228d91fc8cdb18afb1.exe
Size

23KB
MD5

221332d0df66d7228d91fc8cdb18afb1
SHA1

a778920c01d5d2ed184911cd9910021b73745d5b
SHA256

1f244c4c093c1daa7c24d73eac62b3279032ef3f90e6ba0c29a82d0307e87f59
SHA512

8b5e71a09308592461fa1b4ddc8f5266ced5c10928ddf9a8a72602b20d19364c21940799973b6c7f39f03ad029cfcdced9340f150a8942b6c0b85916ced35d33
SSDEEP

384:RBQeCo2zmZbQHkJeCdUwBvQ61gjuQBnB9mRvR6JZlbw8hqIusZzZ3D:RW5yBVd7Rpcnug

Score

10^/10

slash njrat

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

Slash

C2

bxytuto.duckdns.org:1212

Mutex

270a1b4b8ae7d5a0617ba79d8875cccf

Attributes

reg_key
270a1b4b8ae7d5a0617ba79d8875cccf
splitter
|'|'|

Signatures

Njrat family
njrat

Files

221332d0df66d7228d91fc8cdb18afb1.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 576B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy