njrat | d20d96984fff95f596a8ba2881e0f2c026a3d88c5750ed346bb90a4ca1f979dc | Triage

Submit
Reports

Overview

overview

Static

static

d20d96984f...dc.exe

windows7-x64

d20d96984f...dc.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

d20d96984fff95f596a8ba2881e0f2c026a3d88c5750ed346bb90a4ca1f979dc.exe

Resource

win7-20220812-en

njrat hacked evasion persistence trojan

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

d20d96984fff95f596a8ba2881e0f2c026a3d88c5750ed346bb90a4ca1f979dc.exe

Resource

win10v2004-20221111-en

njrat hacked evasion persistence trojan

windows10-2004-x64

9 signatures

150 seconds

General

Target

d20d96984fff95f596a8ba2881e0f2c026a3d88c5750ed346bb90a4ca1f979dc
Size

23KB
MD5

922f213b395f68f34ee1b87e4473731b
SHA1

25126a2103653de2807cac6d40685040970b4150
SHA256

d20d96984fff95f596a8ba2881e0f2c026a3d88c5750ed346bb90a4ca1f979dc
SHA512

bacb07d7e657b6a663e9b278d5053504e82822b3ec785612176f3ad616e306b6ee1015bad73097bff51ccae79e09b8f2bc952cd227ca66c9a66024d3fca3ee5c
SSDEEP

384:h8ayieNFzA0yU6ky2n0dxVa06ngBXSJlf1mRvR6JZlbw8hqIusZzZxv:S9F2SNn+DRpcnuu

Score

10^/10

hacked njrat

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

HacKed

C2

127.0.0.1:2194

Mutex

158686f33462993b23ab0e05f3a480d4

Attributes

reg_key
158686f33462993b23ab0e05f3a480d4
splitter
|'|'|

Signatures

Njrat family
njrat

Files

d20d96984fff95f596a8ba2881e0f2c026a3d88c5750ed346bb90a4ca1f979dc
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 576B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy