njrat | 82673ff45344c7dc1d47921a3f300c56b478f3c24e7a82c581a9d4ac50820849 | Triage

Submit
Reports

Overview

overview

Static

static

82673ff453...49.exe

windows7-x64

8

82673ff453...49.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

82673ff45344c7dc1d47921a3f300c56b478f3c24e7a82c581a9d4ac50820849.exe

Resource

win7-20220812-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

82673ff45344c7dc1d47921a3f300c56b478f3c24e7a82c581a9d4ac50820849.exe

Resource

win10v2004-20220812-en

njrat evasion trojan

windows10-2004-x64

4 signatures

150 seconds

General

Target

82673ff45344c7dc1d47921a3f300c56b478f3c24e7a82c581a9d4ac50820849
Size

23KB
MD5

603502fa7a930816789fb5393e36b990
SHA1

c65fd6145259b07f057d1ab4fdf252b91d812147
SHA256

82673ff45344c7dc1d47921a3f300c56b478f3c24e7a82c581a9d4ac50820849
SHA512

7fa155597ad0705c352af86714840264290027060a9ec52ef6c9af7c08d337bd6c8da9f8ef65d6762d5c1246a352d632bb696882cab25fb2f04f8d44842b7c6a
SSDEEP

384:QDMKFYuEEhERvoBG16Xuy0MHNw6Tg1Y+75JTFmRvR6JZlbw8hqIusZzZlC:Q4W4V6+yDRpcnuv

Score

10^/10

pipo njrat

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

pipo

C2

hamilessel.ddns.net:5552

Mutex

6a064a4e3ab72267f35894b6b45a3f26

Attributes

reg_key
6a064a4e3ab72267f35894b6b45a3f26
splitter
|'|'|

Signatures

Njrat family
njrat

Files

82673ff45344c7dc1d47921a3f300c56b478f3c24e7a82c581a9d4ac50820849
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 576B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy