njrat | d4ee88dbf82a7c6377124dab19bb633e5422b8e99338526dd558d314a9b7f50b | Triage

Submit
Reports

Overview

overview

Static

static

d4ee88dbf8...0b.exe

windows7-x64

d4ee88dbf8...0b.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

hacked skype njrat

1 signatures

Behavioral task

behavioral1

Sample

d4ee88dbf82a7c6377124dab19bb633e5422b8e99338526dd558d314a9b7f50b.exe

Resource

win7-20221111-en

njrat hacked skype evasion persistence trojan

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

d4ee88dbf82a7c6377124dab19bb633e5422b8e99338526dd558d314a9b7f50b.exe

Resource

win10v2004-20221111-en

njrat hacked skype evasion persistence trojan

windows10-2004-x64

9 signatures

150 seconds

General

Target

d4ee88dbf82a7c6377124dab19bb633e5422b8e99338526dd558d314a9b7f50b
Size

29KB
MD5

635f6ba1ba7db66ad9f022f1c205947e
SHA1

9e4f7f048dde72edce48df90cdc0b10863b4bb38
SHA256

d4ee88dbf82a7c6377124dab19bb633e5422b8e99338526dd558d314a9b7f50b
SHA512

46c7640f6f7376e40634bdfee55c5469994fdd1472e4fc9218390b730ad04378d1b48f996decb53d3f1bf67390fa7cf27f672c529a72cb69b94631ac81fdafc1
SSDEEP

384:S4J55l71rzsqiYtrP591rCGmqDGzjeP0GBsbh0w4wlAokw9OhgOL1vYRGOZzHZY:77FsqiILdrsqUjevBKh0p29SgRBD

Score

10^/10

hacked skype njrat

Malware Config

Extracted

Family

njrat

Version

0.6.4

Botnet

HacKed Skype

C2

yasinmcaaminos.zapto.org:1177

Mutex

13e5090cee57967233f9b6a72ec1c5dd

Attributes

reg_key
13e5090cee57967233f9b6a72ec1c5dd
splitter
|'|'|

Signatures

Njrat family
njrat

Files

d4ee88dbf82a7c6377124dab19bb633e5422b8e99338526dd558d314a9b7f50b
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 576B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy