njrat | 17e9dbd8fbcd555d754cabd65c48deacd9cff3f006d3733b3a3001b4d34a9a65 | Triage

Submit
Reports

Overview

overview

Static

static

17e9dbd8fb...65.exe

windows7-x64

17e9dbd8fb...65.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

conqueer ,<3 njrat

1 signatures

Behavioral task

behavioral1

Sample

17e9dbd8fbcd555d754cabd65c48deacd9cff3f006d3733b3a3001b4d34a9a65.exe

Resource

win7-20220812-en

njrat conqueer ,<3 evasion persistence trojan

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

17e9dbd8fbcd555d754cabd65c48deacd9cff3f006d3733b3a3001b4d34a9a65.exe

Resource

win10v2004-20220812-en

njrat conqueer ,<3 evasion persistence trojan

windows10-2004-x64

9 signatures

150 seconds

General

Target

17e9dbd8fbcd555d754cabd65c48deacd9cff3f006d3733b3a3001b4d34a9a65
Size

23KB
MD5

329799dba3f8fdc239e9139b98b90b2d
SHA1

a0f3c66dd6b0fdbff7ff7b268504eaef284f2e40
SHA256

17e9dbd8fbcd555d754cabd65c48deacd9cff3f006d3733b3a3001b4d34a9a65
SHA512

421fe172523abc70d070eec27a002ede393cd8803249ce01da2e778de42d0181eed98bee0f990c232ef7f4ea759ee6740e9c7f6347cc0dace2df39052974fe2e
SSDEEP

384:VQeCo2zmZbQHkJeCdUwBvQ61gjuQBnB9mRvR6JZlbw8hqIusZzZ2+:65yBVd7Rpcnue

Score

10^/10

conqueer ,<3 njrat

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

cOnQueer ,<3

C2

egyarmy12.ddns.net:1177

Mutex

f5f97b2cd06dd467ece1ab6f24f058f8

Attributes

reg_key
f5f97b2cd06dd467ece1ab6f24f058f8
splitter
|'|'|

Signatures

Njrat family
njrat

Files

17e9dbd8fbcd555d754cabd65c48deacd9cff3f006d3733b3a3001b4d34a9a65
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 576B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy