njrat | ebce1f09c5525573454b70adfdb3e1a4b1ab587f27305d77483410eb857162b2 | Triage

Submit
Reports

Overview

overview

Static

static

ebce1f09c5...b2.exe

windows7-x64

ebce1f09c5...b2.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

ebce1f09c5525573454b70adfdb3e1a4b1ab587f27305d77483410eb857162b2.exe

Resource

win7-20220812-en

njrat hacked evasion trojan

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

ebce1f09c5525573454b70adfdb3e1a4b1ab587f27305d77483410eb857162b2.exe

Resource

win10v2004-20221111-en

njrat hacked evasion trojan

windows10-2004-x64

7 signatures

150 seconds

General

Target

ebce1f09c5525573454b70adfdb3e1a4b1ab587f27305d77483410eb857162b2
Size

135KB
MD5

fa87a54109a44c9f85da8ef2714a9f49
SHA1

19ce8dd6c33b89e82e75247b841dd3aea57e8cf5
SHA256

ebce1f09c5525573454b70adfdb3e1a4b1ab587f27305d77483410eb857162b2
SHA512

ab72df8ee41c2a601ea8c6c82dfe2b708dfa61e3be70f4d2fe98c404f896b17ebb8c9146588b0dfacaedcc1c8a2de7664a444e435301839941d437eda17860f9
SSDEEP

768:IqW4V6+yDRpcnuZrnskz+09lQk4GzjV0XEc2JP1iK2SwX7R81yqBP:jW4VcDRWuZL/SclQBY50XvUP1R1fF

Score

10^/10

hacked njrat

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

Hacked

C2

maistro.no-ip.org:1177

Mutex

89858a26c3b4f367dbcfa95959e39d35

Attributes

reg_key
89858a26c3b4f367dbcfa95959e39d35
splitter
|'|'|

Signatures

Njrat family
njrat

Files

ebce1f09c5525573454b70adfdb3e1a4b1ab587f27305d77483410eb857162b2
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 113KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy