njrat | c7f27f39bc1aa0128a98aa1fafc71f8008f6d897d74cae9d10f59fd8dc1f1af0 | Triage

Submit
Reports

Overview

overview

Static

static

c7f27f39bc...f0.exe

windows7-x64

c7f27f39bc...f0.exe

windows10-2004-x64

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

c7f27f39bc1aa0128a98aa1fafc71f8008f6d897d74cae9d10f59fd8dc1f1af0.exe

Resource

win7-20220812-en

njrat hacked evasion persistence trojan

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

c7f27f39bc1aa0128a98aa1fafc71f8008f6d897d74cae9d10f59fd8dc1f1af0.exe

Resource

win10v2004-20220812-en

njrat hacked trojan

windows10-2004-x64

5 signatures

150 seconds

General

Target

c7f27f39bc1aa0128a98aa1fafc71f8008f6d897d74cae9d10f59fd8dc1f1af0
Size

29KB
MD5

2ec4de9fb46f096cb9d8cda59dbf0a9f
SHA1

c798a2b7efa30131712cc93d257665782aa7e493
SHA256

c7f27f39bc1aa0128a98aa1fafc71f8008f6d897d74cae9d10f59fd8dc1f1af0
SHA512

cf80dcf90fde9eb4fd5109c70405006df94cd2424ab43085303a6bea809de35a81ed78a19c8894ccd24a03057e46a87d9f8c816f5de436ae4e0861a24b8c4ec4
SSDEEP

768:cx77Kk4XeP/Fzsq+xre6BKh0p29SgR6d:27K7W4zx3KhG29j6d

Score

10^/10

hacked njrat

Malware Config

Extracted

Family

njrat

Version

0.6.4

Botnet

HacKed

C2

husseinsaif.linkpc.net:1177

Mutex

5cd8f17f4086744065eb0992a09e05a2

Attributes

reg_key
5cd8f17f4086744065eb0992a09e05a2
splitter
|'|'|

Signatures

Njrat family
njrat

Files

c7f27f39bc1aa0128a98aa1fafc71f8008f6d897d74cae9d10f59fd8dc1f1af0
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 576B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy