njrat | dc275df8889c1104b1332df017c6c8bfdb843bd2afbe37e5b6181359e89a3fde | Triage

Submit
Reports

Overview

overview

Static

static

dc275df888...de.exe

windows7-x64

dc275df888...de.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

by mjhol nospam njrat

1 signatures

Behavioral task

behavioral1

Sample

dc275df8889c1104b1332df017c6c8bfdb843bd2afbe37e5b6181359e89a3fde.exe

Resource

win7-20220812-en

njrat by mjhol nospam evasion persistence trojan

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

dc275df8889c1104b1332df017c6c8bfdb843bd2afbe37e5b6181359e89a3fde.exe

Resource

win10v2004-20221111-en

njrat by mjhol nospam evasion persistence trojan

windows10-2004-x64

8 signatures

150 seconds

General

Target

dc275df8889c1104b1332df017c6c8bfdb843bd2afbe37e5b6181359e89a3fde
Size

23KB
MD5

25628ba762a808eb943758038b458821
SHA1

a124ce3a0c7446e46ec06fd32738f1087313a0ea
SHA256

dc275df8889c1104b1332df017c6c8bfdb843bd2afbe37e5b6181359e89a3fde
SHA512

ab55ed2f7f84509da4070a8a2ef4aac375ef5a820bbc0184f29127117315b7e64d267b09d4b9c66abd2726d43dd47f6189e9aabdaef18a15cda7a5cc76a02b90
SSDEEP

384:hc6CqbFYh4clHemiO0904mVQ6fgpQ+957tmRvR6JZlbw8hqIusZzZhpo:iIUEmlskRpcnuCq

Score

10^/10

by mjhol nospam njrat

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

by mjhol NOspaM

C2

fsgxbv.bounceme.net:1

Mutex

7423d65188a41ea50509358550581e4c

Attributes

reg_key
7423d65188a41ea50509358550581e4c
splitter
|'|'|

Signatures

Njrat family
njrat

Files

dc275df8889c1104b1332df017c6c8bfdb843bd2afbe37e5b6181359e89a3fde
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 576B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy