njrat | a03d46251b4704e0689067edfa8f9a36c0345c2a42f6d5c570e7d950ae71a5ce | Triage

Submit
Reports

Overview

overview

Static

static

a03d46251b...ce.exe

windows7-x64

8

a03d46251b...ce.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

حمودي الروسي njrat

1 signatures

Behavioral task

behavioral1

Sample

a03d46251b4704e0689067edfa8f9a36c0345c2a42f6d5c570e7d950ae71a5ce.exe

Resource

win7-20221111-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

a03d46251b4704e0689067edfa8f9a36c0345c2a42f6d5c570e7d950ae71a5ce.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

4 signatures

150 seconds

General

Target

a03d46251b4704e0689067edfa8f9a36c0345c2a42f6d5c570e7d950ae71a5ce
Size

29KB
MD5

6d14f22c66bdc547512c0919088a1876
SHA1

13b0d0f66c375557b849063d2fc61c3943563474
SHA256

a03d46251b4704e0689067edfa8f9a36c0345c2a42f6d5c570e7d950ae71a5ce
SHA512

0d23e5f5633df3b9337b851af79b71c8dbf36d93e7c9f9ebf4a0dba0cbe219cc4d705760089e2c649b734fbc58dd7a930e485d3fc94ea4ddc5b364e2e629d6de
SSDEEP

384:2mCftl7ndJoc8e9J75tLxkmmqD2xKueAsGBsbh0w4wlAokw9OhgOL1vYRGOZzCZW:MD7zoc86RjxKqKKue6BKh0p29SgREW

Score

10^/10

حمودي الروسي njrat

Malware Config

Extracted

Family

njrat

Version

0.6.4

Botnet

حمودي الروسي

C2

hmod44.ddns.net:7788

Mutex

159eeadea67c9230ef9b7abababb00fd

Attributes

reg_key
159eeadea67c9230ef9b7abababb00fd
splitter
|'|'|

Signatures

Njrat family
njrat

Files

a03d46251b4704e0689067edfa8f9a36c0345c2a42f6d5c570e7d950ae71a5ce
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 576B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy