njrat | 00b24eda25d9bfa998e3df9bbde47a53a928db1f1ff48a30dd974f839e68dbfb | Triage

Submit
Reports

Overview

overview

Static

static

00b24eda25...fb.exe

windows7-x64

00b24eda25...fb.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

خروف جديد njrat

1 signatures

Behavioral task

behavioral1

Sample

00b24eda25d9bfa998e3df9bbde47a53a928db1f1ff48a30dd974f839e68dbfb.exe

Resource

win7-20220812-en

njrat خروف جديد evasion persistence trojan

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

00b24eda25d9bfa998e3df9bbde47a53a928db1f1ff48a30dd974f839e68dbfb.exe

Resource

win10v2004-20220901-en

njrat خروف جديد evasion persistence trojan

windows10-2004-x64

10 signatures

150 seconds

General

Target

00b24eda25d9bfa998e3df9bbde47a53a928db1f1ff48a30dd974f839e68dbfb
Size

139KB
MD5

3f6233e968807b7da5c577f8d83db615
SHA1

20ef6b268d0105a43e1ec5d84b4708858b50465c
SHA256

00b24eda25d9bfa998e3df9bbde47a53a928db1f1ff48a30dd974f839e68dbfb
SHA512

478f0baf84cb25f9a87fe3129a7cdcf509912f45c3382a0c210c19f85f5f7dfad3a1020ea9144dba48033aa06384053739a21a116557362386e9cd5a1b734663
SSDEEP

3072:qc3c8A29fDg376Ke2+mDBWbXpf5dVUfnXLvo9mCji8bTSD:J9UhDkzrdVOXLg9mYfSD

Score

10^/10

خروف جديد njrat

Malware Config

Extracted

Family

njrat

Version

0.6.4

Botnet

خروف جديد

C2

mustaffahacker.ddns.net:1177

Mutex

301b5fcf8ce2fab8868e80b6c1f912fe

Attributes

reg_key
301b5fcf8ce2fab8868e80b6c1f912fe
splitter
|'|'|

Signatures

Njrat family
njrat

Files

00b24eda25d9bfa998e3df9bbde47a53a928db1f1ff48a30dd974f839e68dbfb
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 111KB - Virtual size: 110KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy