njrat | 09117abee61d61a42221b9c0871e7e75abcee0ee8f785339922debbb46a8832f | Triage

Submit
Reports

Overview

overview

Static

static

09117abee6...2f.exe

windows7-x64

09117abee6...2f.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

09117abee61d61a42221b9c0871e7e75abcee0ee8f785339922debbb46a8832f.exe

Resource

win7-20220812-en

njrat hacked evasion persistence trojan

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

09117abee61d61a42221b9c0871e7e75abcee0ee8f785339922debbb46a8832f.exe

Resource

win10v2004-20220812-en

njrat hacked evasion persistence trojan

windows10-2004-x64

9 signatures

150 seconds

General

Target

09117abee61d61a42221b9c0871e7e75abcee0ee8f785339922debbb46a8832f
Size

23KB
MD5

0ef76d2cffd22301ab89b538256730f8
SHA1

2922db7f7bad3fad105323cd93cb86fca1ca0289
SHA256

09117abee61d61a42221b9c0871e7e75abcee0ee8f785339922debbb46a8832f
SHA512

151c92c269566a07a441dc77eab92c4f217979e3f44af67ab5f0d62e42daf61b20be2bc1baf32ee1d2b318c2a3bd6fe9296f5d086b7f6ec1203ddee158d08f8e
SSDEEP

384:R8aLWS0dABLYVq6RxP8MDFF09vK563gRMmJKUv0mRvR6JZlbw8hqIusZzZ9D:CXcwt3tRpcnui

Score

10^/10

hacked njrat

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

HacKed

C2

pcpc64.ddns.net:5552

Mutex

72dbb2b9fce7a1d9a3fcd3e7f7df6869

Attributes

reg_key
72dbb2b9fce7a1d9a3fcd3e7f7df6869
splitter
|'|'|

Signatures

Njrat family
njrat

Files

09117abee61d61a42221b9c0871e7e75abcee0ee8f785339922debbb46a8832f
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 576B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy