njrat | ca0ec790100549b31925f4263827f8a3c5fd6d981af2d30380d2efa65cb28029 | Triage

Submit
Reports

Overview

overview

Static

static

ca0ec79010...29.exe

windows7-x64

ca0ec79010...29.exe

windows10-2004-x64

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

ca0ec790100549b31925f4263827f8a3c5fd6d981af2d30380d2efa65cb28029.exe

Resource

win7-20221111-en

njrat hacked evasion persistence trojan

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

ca0ec790100549b31925f4263827f8a3c5fd6d981af2d30380d2efa65cb28029.exe

Resource

win10v2004-20221111-en

njrat hacked evasion persistence trojan

windows10-2004-x64

9 signatures

150 seconds

General

Target

ca0ec790100549b31925f4263827f8a3c5fd6d981af2d30380d2efa65cb28029
Size

29KB
MD5

c10f0ddca879cbe5566ec40e3d99da8a
SHA1

ed8d73f2d7371f070790c414b586974679135243
SHA256

ca0ec790100549b31925f4263827f8a3c5fd6d981af2d30380d2efa65cb28029
SHA512

f9b2f1111b8f6fc4afae7eb25c8eee497564abe2ef882a316e725946560ecaaf893fcb6032631d4f20965f1da03f40a5d221748dd5a203650cfae4f383ce7d30
SSDEEP

768:12u75oa4fu124AqFjXeJBKh0p29SgReq:t75CPkj8KhG29jeq

Score

10^/10

hacked njrat

Malware Config

Extracted

Family

njrat

Version

0.6.4

Botnet

HacKed

C2

adam1424.ddns.net:1177

Mutex

301b5fcf8ce2fab8868e80b6c1f912fe

Attributes

reg_key
301b5fcf8ce2fab8868e80b6c1f912fe
splitter
|'|'|

Signatures

Njrat family
njrat

Files

ca0ec790100549b31925f4263827f8a3c5fd6d981af2d30380d2efa65cb28029
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 576B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy