Overview

overview

10

Static

static

10

584-68-0x0...ry.exe

windows7-x64

584-68-0x0...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    584-68-0x0000000000400000-0x000000000040E000-memory.dmp

  • Size

    56KB

  • MD5

    29d96ccf36ec18ce2a7b6d78f2e1d3dc

  • SHA1

    0bc0c79b746f1c2cff0f5bf316006eccc5451e25

  • SHA256

    f3bf02b3da1dccf5ad10aaf6fb8cdb08ab20f40a79614c619c024e4d9c2ec46c

  • SHA512

    b97cc1774c1d4413d18efd9e6bc1d9d66a32d9400cb4c4d594fe14be014a9005dbc61dfecbcc7858e5eea27a453c0b02b54099d67176d134a867433b7b79b5cc

  • SSDEEP

    384:WLEBFhM7OA0102PgPGC+YPFhh/MxAQk93vmhm7UMKmIEecKdbXTzm9bVhca36BrZ:QQFXc2EExA/vMHTi9bD

Score
10/10
updaternjrat

Malware Config

Extracted

Family

njrat

Version

v2.0

Botnet

updater

C2

alexanderhk228.hopto.org:4432

Mutex

Windows

Attributes
  • reg_key

    Windows

  • splitter

    |-F-|

Signatures

Files

  • 584-68-0x0000000000400000-0x000000000040E000-memory.dmp
    .exe windows x86


    Headers

    Sections