njrat | 4243582456948bf7912f3e19ca931243399da1f36edd53960c88ef69d591bf46 | Triage

Submit
Reports

Overview

overview

Static

static

4243582456...46.exe

windows7-x64

4243582456...46.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

4243582456948bf7912f3e19ca931243399da1f36edd53960c88ef69d591bf46.exe

Resource

win7-20221111-en

njrat hacked evasion persistence trojan

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

4243582456948bf7912f3e19ca931243399da1f36edd53960c88ef69d591bf46.exe

Resource

win10v2004-20221111-en

njrat hacked evasion persistence trojan

windows10-2004-x64

8 signatures

150 seconds

General

Target

4243582456948bf7912f3e19ca931243399da1f36edd53960c88ef69d591bf46
Size

23KB
MD5

4449980dfb2451b914f291f63751efb0
SHA1

58caaba1a66ac410fc0c13226188eef923324f89
SHA256

4243582456948bf7912f3e19ca931243399da1f36edd53960c88ef69d591bf46
SHA512

e3c43a8f07d6110ccddde0b1697f0c8203f596e6e977328bf3defe2d693bf36d240b456ef202cc9e879166965b2c99bb80e8dbbe82959854de8e776a7108aeca
SSDEEP

384:0cqbCK0l4h7o9SVyDGvENuh46/gJkOmMSW38mRvR6JZlbw8hqIusZzZjAlX:j30py6vhxaRpcnuV

Score

10^/10

hacked njrat

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

HacKed

C2

sylis.no-ip.biz:1177

Mutex

15aded1fbe0372935c8be42678bb3881

Attributes

reg_key
15aded1fbe0372935c8be42678bb3881
splitter
|'|'|

Signatures

Njrat family
njrat

Files

4243582456948bf7912f3e19ca931243399da1f36edd53960c88ef69d591bf46
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 576B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy