Overview

overview

10

Static

static

10

addbfc18be...40.exe

windows7-x64

10

addbfc18be...40.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    addbfc18bea23d5c1a8f556a7c250622582471bcb58e6297ebb79bc0bf557340

  • Size

    29KB

  • MD5

    22d51884b353c1bc5e5b6953d71176a0

  • SHA1

    31194364c3d612048147ebc6c72052294e1ea5ea

  • SHA256

    addbfc18bea23d5c1a8f556a7c250622582471bcb58e6297ebb79bc0bf557340

  • SHA512

    e9821a57a627dd8af9a535d667a5d1e30db2deab271ba9564f5a03e55738dccba00ffcb2f039e86adaec6227569a753b94937aba7fa4ec7df28149ff90e8badc

  • SSDEEP

    384:UgJGJl7tj1MsagaF1+G5pdnGWmqDCbNhekcGBsbh0w4wlAokw9OhgOL1vYRGOZzy:g7nMsanZRnQqIXeOBKh0p29SgRaB

Score
10/10
pointblanknjrat

Malware Config

Extracted

Family

njrat

Version

0.6.4

Botnet

PointBlank

C2

kidaoloko.no-ip.org:1177

Mutex

c369e568f43218aa4fe2622dd5d41e43

Attributes
  • reg_key

    c369e568f43218aa4fe2622dd5d41e43

  • splitter

    |'|'|

Signatures

Files

  • addbfc18bea23d5c1a8f556a7c250622582471bcb58e6297ebb79bc0bf557340
    .exe windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections