njrat | 13bb02b379203bcbe9d6eb8198974940f858163429a49c5fe33dac8346a4e62d | Triage

Submit
Reports

Overview

overview

Static

static

13bb02b379...2d.exe

windows7-x64

13bb02b379...2d.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

13bb02b379203bcbe9d6eb8198974940f858163429a49c5fe33dac8346a4e62d.exe

Resource

win7-20220812-en

njrat gen1 evasion trojan

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

13bb02b379203bcbe9d6eb8198974940f858163429a49c5fe33dac8346a4e62d.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

13bb02b379203bcbe9d6eb8198974940f858163429a49c5fe33dac8346a4e62d
Size

385KB
MD5

03d274f0140dfd33baad4bd16762fe10
SHA1

b0441d467e818552f4e799b44b5849c1cf5ad0e6
SHA256

13bb02b379203bcbe9d6eb8198974940f858163429a49c5fe33dac8346a4e62d
SHA512

885c8ebd1bf8131e57226e4fdc5f9c65c8d71ae44b70b2dbd22a63c592819be2c5d07db636e6ee3f8a98bc5be1ac8de998ae67696b3bffc5c884e4966a0d63a2
SSDEEP

3072:g/ok70YZeGd0uDwBvbePC3RVEXSJctILJTxgOEHQ+:gZZeTYw2C3r4SJRTxqQ+

Score

10^/10

gen1 njrat

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

Gen1

C2

hairandnails.zapto.org:1000

Mutex

e0b2dc412d70831bb6d4cb776530ec83

Attributes

reg_key
e0b2dc412d70831bb6d4cb776530ec83
splitter
|'|'|

Signatures

Njrat family
njrat

Files

13bb02b379203bcbe9d6eb8198974940f858163429a49c5fe33dac8346a4e62d
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 362KB - Virtual size: 362KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy