njrat | 75679157212e8c197f65ab8755cd3329af66d84f5026cc88f9f1d4809f3b63be | Triage

Submit
Reports

Overview

overview

Static

static

7567915721...be.exe

windows7-x64

7567915721...be.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

75679157212e8c197f65ab8755cd3329af66d84f5026cc88f9f1d4809f3b63be.exe

Resource

win7-20220812-en

njrat hacked evasion persistence trojan

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

75679157212e8c197f65ab8755cd3329af66d84f5026cc88f9f1d4809f3b63be.exe

Resource

win10v2004-20220812-en

njrat hacked evasion persistence trojan

windows10-2004-x64

9 signatures

150 seconds

General

Target

75679157212e8c197f65ab8755cd3329af66d84f5026cc88f9f1d4809f3b63be
Size

24KB
MD5

930b40e0787401c788c97e5e67349640
SHA1

34ad311c1f377a834809e75044dedee042b971f4
SHA256

75679157212e8c197f65ab8755cd3329af66d84f5026cc88f9f1d4809f3b63be
SHA512

e0ed7c5ac33395ecf300f8a924b073b95740b9b5c08ec2e96224227b40919126b6bf18ccd37e39072987d74728e5ae97d584db479c39c543904a32730e68ce52
SSDEEP

384:sluBPiZCMfdfSJrQbsLRGSIxYVL46pg/i8BD9BmRvR6JZlbw8hqIusZzZEF:7OmhtIiRpcnuH

Score

10^/10

hacked njrat

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

HacKed

C2

ahmedaboud.zapto.org:5552

Mutex

7932e7731bd1ba296fe8966c579a641d

Attributes

reg_key
7932e7731bd1ba296fe8966c579a641d
splitter
|'|'|

Signatures

Njrat family
njrat

Files

75679157212e8c197f65ab8755cd3329af66d84f5026cc88f9f1d4809f3b63be
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 576B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy