njrat | dd9988be6cdf7cec201222e4382cfeccdfcf9c0c6aeb627012f6b279a4647748 | Triage

Submit
Reports

Overview

overview

Static

static

dd9988be6c...48.exe

windows7-x64

dd9988be6c...48.exe

windows10-2004-x64

Sharing

Static task

static1

rrrrrrrrrrrrrrrrrr njrat

1 signatures

Behavioral task

behavioral1

Sample

dd9988be6cdf7cec201222e4382cfeccdfcf9c0c6aeb627012f6b279a4647748.exe

Resource

win7-20221111-en

njrat rrrrrrrrrrrrrrrrrr evasion persistence trojan

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

dd9988be6cdf7cec201222e4382cfeccdfcf9c0c6aeb627012f6b279a4647748.exe

Resource

win10v2004-20221111-en

njrat rrrrrrrrrrrrrrrrrr evasion persistence trojan

windows10-2004-x64

9 signatures

150 seconds

General

Target

dd9988be6cdf7cec201222e4382cfeccdfcf9c0c6aeb627012f6b279a4647748
Size

29KB
MD5

1ee11541fbccdd49e32727954c3d52df
SHA1

9ff827221913eeb2601c22cc28ad6358ded6e44b
SHA256

dd9988be6cdf7cec201222e4382cfeccdfcf9c0c6aeb627012f6b279a4647748
SHA512

f054d79d7a81b00dad5f781f7a6b87abbe67cd5254cbe7fffdd458ae1f451a6510a6357c4703102c20618cef09b15ec3cc3ae8fc59af65746c7c3e2723b29a2b
SSDEEP

768:yKNpc1k75kraWTOflzsqkreyBKh0p29SgRdV:f75x4FHKhG29jdV

Score

10^/10

rrrrrrrrrrrrrrrrrr njrat

Malware Config

Extracted

Family

njrat

Version

0.6.4

Botnet

RRRRRRRRRRRRRRRRRR

C2

alihack12345.no-ip.biz:1177

Mutex

12ce4e06a81e8d54fd01d9b762f1b1bb

Attributes

reg_key
12ce4e06a81e8d54fd01d9b762f1b1bb
splitter
|'|'|

Signatures

Njrat family
njrat

Files

dd9988be6cdf7cec201222e4382cfeccdfcf9c0c6aeb627012f6b279a4647748
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 576B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy