njrat | 5523afc96f022631c00fb2765a05a24dfe317198af5fc53c4fff1e6f714cf10e | Triage

Submit
Reports

Overview

overview

Static

static

5523afc96f...0e.exe

windows7-x64

1

5523afc96f...0e.exe

windows10-2004-x64

6

Sharing

Copy URL Twitter E-mail

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

5523afc96f022631c00fb2765a05a24dfe317198af5fc53c4fff1e6f714cf10e.exe

Resource

win7-20220812-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

5523afc96f022631c00fb2765a05a24dfe317198af5fc53c4fff1e6f714cf10e.exe

Resource

win10v2004-20220901-en

microsoft persistence phishing

windows10-2004-x64

10 signatures

150 seconds

General

Target

5523afc96f022631c00fb2765a05a24dfe317198af5fc53c4fff1e6f714cf10e
Size

56KB
MD5

92549dea5056941b17b90da88691a300
SHA1

b0acc6f1e9b92dda5340f4bb36849e8a137886f2
SHA256

5523afc96f022631c00fb2765a05a24dfe317198af5fc53c4fff1e6f714cf10e
SHA512

6566dfdc5fa59d1e129722db7fc416f9c9c2d2d8fbdd61cf121e164913ecdc8d5c9f5a31d1f8c17590e74857b10ec8ecc91d04899874b29ef131badeff154648
SSDEEP

1536:z7nSQtD7KhG29j1CCqIhZlU9NxMLMHMv:PSYKA29jqmYx7Mv

Score

10^/10

hacked njrat

Malware Config

Extracted

Family

njrat

Version

0.6.4

Botnet

HacKed

C2

hassonali.no-ip.org:1177

Mutex

ecc7c8c51c0850c1ec247c7fd3602f20

Attributes

reg_key
ecc7c8c51c0850c1ec247c7fd3602f20
splitter
|'|'|

Signatures

Njrat family
njrat

Files

5523afc96f022631c00fb2765a05a24dfe317198af5fc53c4fff1e6f714cf10e
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 576B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 27KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy