njrat | fa02b7a822322fc8a06e2170795ae0c64c1261def9537ae0d1d4f63905cacc59 | Triage

Submit
Reports

Overview

overview

Static

static

fa02b7a822...59.exe

windows7-x64

fa02b7a822...59.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

oioi_حبيب على njrat

1 signatures

Behavioral task

behavioral1

Sample

fa02b7a822322fc8a06e2170795ae0c64c1261def9537ae0d1d4f63905cacc59.exe

Resource

win7-20220812-en

njrat oioi_حبيب على evasion trojan

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

fa02b7a822322fc8a06e2170795ae0c64c1261def9537ae0d1d4f63905cacc59.exe

Resource

win10v2004-20220812-en

njrat oioi_حبيب على trojan

windows10-2004-x64

5 signatures

150 seconds

General

Target

fa02b7a822322fc8a06e2170795ae0c64c1261def9537ae0d1d4f63905cacc59
Size

52KB
MD5

0b90ed8f9f3bbc8b67d2df3f17a72f00
SHA1

3969c498aee63b6b52d6fb0d1627fe8550e2ba8f
SHA256

fa02b7a822322fc8a06e2170795ae0c64c1261def9537ae0d1d4f63905cacc59
SHA512

9544bcbf8905849fd959bfa3fb763c634b193de70b9b14632db7d2548e2a77fbf549d13fc535bc82361062cab8f9c525939643053a2d48f3ea18215b91d17793
SSDEEP

1536:v71moQbQMKhG29jA6fR1+aJe1mgawzxsBub8PC1jIHxATVG:ZmoOSA29vR1+aJe1mgawzxsBub861jIh

Score

10^/10

oioi_حبيب على njrat

Malware Config

Extracted

Family

njrat

Version

0.6.4

Botnet

OIOI_حبيب على

C2

alikasm111.no-ip.biz:1177

Mutex

5cd8f17f4086744065eb0992a09e05a2

Attributes

reg_key
5cd8f17f4086744065eb0992a09e05a2
splitter
|'|'|

Signatures

Njrat family
njrat

Files

fa02b7a822322fc8a06e2170795ae0c64c1261def9537ae0d1d4f63905cacc59
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy