General
-
Target
1304-63-0x0000000000400000-0x000000000040E000-memory.dmp
-
Size
56KB
-
MD5
35592ddb2a2fc4a60f1ac4122ee4ad73
-
SHA1
199a96be88ffdeef31b96a41484b6ba5d767d42a
-
SHA256
39f84714c3672768e025a8c1aae90234069a811eed51940cc06c2907d17b9b05
-
SHA512
0e17afb386734b7d605a8bbfb53b022188558ea2b87144ae5d570f8565bfb2335bcdf09623bb63c54b8388c53a596285b45fcac2d5fa41af93b5d6c4e55641ed
-
SSDEEP
384:zLGCnWzGgqhZArwvaGGuPh5BrMtAQk93vmhm7UMKmIEecKdbXTzm9bVhcaP6Yr6s:XxvMAitA/vMHTi9bD
Score
10/10
Malware Config
Extracted
Family
njrat
Version
v2.0
Botnet
update
C2
money2022.ddns.net:8080
Mutex
Windows
Attributes
-
reg_key
Windows
-
splitter
|-F-|
Signatures
-
Njrat family
Files
-
1304-63-0x0000000000400000-0x000000000040E000-memory.dmp
Headers
Sections