njrat | 43cceb8c9e39a9e64e33ea08321300dfde3fb3587b0ad8ed6d423f32c4e4a55c | Triage

Submit
Reports

Overview

overview

Static

static

43cceb8c9e...5c.exe

windows7-x64

43cceb8c9e...5c.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

يالله يامحمد ياعلي njrat

1 signatures

Behavioral task

behavioral1

Sample

43cceb8c9e39a9e64e33ea08321300dfde3fb3587b0ad8ed6d423f32c4e4a55c.exe

Resource

win7-20220901-en

njrat يالله يامحمد ياعلي evasion trojan

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

43cceb8c9e39a9e64e33ea08321300dfde3fb3587b0ad8ed6d423f32c4e4a55c.exe

Resource

win10v2004-20220812-en

njrat يالله يامحمد ياعلي trojan

windows10-2004-x64

5 signatures

150 seconds

General

Target

43cceb8c9e39a9e64e33ea08321300dfde3fb3587b0ad8ed6d423f32c4e4a55c
Size

29KB
MD5

0a83f94e5fd7215ffa227251f2490f20
SHA1

9b73e54b3491cb84dc6becc47de294f777129b25
SHA256

43cceb8c9e39a9e64e33ea08321300dfde3fb3587b0ad8ed6d423f32c4e4a55c
SHA512

769a9881f76a90904973e1b4ce8aa87888871cf773f5d540aea3b8a378f5feb05cd3f244e89fc7890248e892833e976979427e7bc21be3fc1f0693366fd10612
SSDEEP

768:T7Xo4E3gcjTAqMBBeoBKh0p29SgRoC+P:T7XQ0pBLKhG29jR+P

Score

10^/10

يالله يامحمد ياعلي njrat

Malware Config

Extracted

Family

njrat

Version

0.6.4

Botnet

يالله يامحمد ياعلي

C2

mamomamo.no-ip.biz:1133

Mutex

db410269cd2ab08de0b8d392883b995e

Attributes

reg_key
db410269cd2ab08de0b8d392883b995e
splitter
|'|'|

Signatures

Njrat family
njrat

Files

43cceb8c9e39a9e64e33ea08321300dfde3fb3587b0ad8ed6d423f32c4e4a55c
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 576B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy