njrat | fce8fd55808393ef3c62e4b60af86d99841cea8bd62518651baa4d62a6d14f1a | Triage

Submit
Reports

Static

static

fce8fd5580...1a.exe

fce8fd5580...1a.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

fce8fd55808393ef3c62e4b60af86d99841cea8bd62518651baa4d62a6d14f1a.exe

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

fce8fd55808393ef3c62e4b60af86d99841cea8bd62518651baa4d62a6d14f1a.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

3 signatures

150 seconds

General

Target

fce8fd55808393ef3c62e4b60af86d99841cea8bd62518651baa4d62a6d14f1a
Size

204KB
MD5

959753549d5e8cf549bc9e748c6529c3
SHA1

0fe86052b1f54c875d507299e58f56c24333cdb9
SHA256

fce8fd55808393ef3c62e4b60af86d99841cea8bd62518651baa4d62a6d14f1a
SHA512

302327eb0c4d8166a2b8da467b0e077e31edf12309157be744e4e463f12056ddcb4fb1e615ad9cc281fe11519e95ccf07b2699142e0d528c0a0557e09dd02e84
SSDEEP

3072:ZtwyHJv+yJZcQ93ikQAxWnHuHZapwNYlaqF8KZd:3wyshQXWHE8wKQqp

Score

10^/10

nice try njrat

Malware Config

Extracted

Family

njrat

Version

im523

Botnet

NICE TRY

C2

192.168.1.1:8080

Mutex

81e31f75ce9c40f1ed1768176d050428

Attributes

reg_key
81e31f75ce9c40f1ed1768176d050428
splitter
|'|'|

Signatures

Njrat family
njrat

Files

fce8fd55808393ef3c62e4b60af86d99841cea8bd62518651baa4d62a6d14f1a
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 35KB - Virtual size: 34KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 168KB - Virtual size: 167KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy