njrat | 794C8F05C33A4710C4E4C60CE6A130012BEADF1C130B8[.]exe | Triage

Submit
Reports

Overview

overview

Static

static

794C8F05C3...B8.exe

windows7-x64

7

794C8F05C3...B8.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

Static task

static1

valo triggerbot njrat

1 signatures

Behavioral task

behavioral1

Sample

794C8F05C33A4710C4E4C60CE6A130012BEADF1C130B8.exe

Resource

win7-20220901-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

794C8F05C33A4710C4E4C60CE6A130012BEADF1C130B8.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

3 signatures

150 seconds

General

Target

794C8F05C33A4710C4E4C60CE6A130012BEADF1C130B8.exe
Size

27KB
MD5

9c6492e6b7451af51abb44eb52692f68
SHA1

9321a060a6e7e40b482861508350edc882bd41fc
SHA256

794c8f05c33a4710c4e4c60ce6a130012beadf1c130b8d2961f5f535c23e7697
SHA512

f20c6f30e6d97017cba4563e42aee14a72d52d17ae06fbfefc44d18f39330f67ed6b0f5c8d8c2302a9400bd0e950887fb23b747cfa4e1426b6f52fe63f781e4b
SSDEEP

384:1LmrFfm7OA016sDEdg4+YPFhh/MxAQk93vmhm7UMKmIEecKdbXTzm9bVhcaj6urZ:VcFfys6oxA/vMHTi9bD

Score

10^/10

valo triggerbot njrat

Malware Config

Extracted

Family

njrat

Version

v2.0

Botnet

Valo Triggerbot

C2

7.tcp.eu.ngrok.io:16929

Mutex

Windows

Attributes

reg_key
Windows
splitter
|-F-|

Signatures

Njrat family
njrat

Files

794C8F05C33A4710C4E4C60CE6A130012BEADF1C130B8.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 576B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy