njrat | cb140929d00422f88bc8298d840d09f7c0042d30c1e82b92749c4ec04166d19d | Triage

Submit
Reports

Overview

overview

Static

static

cb140929d0...9d.exe

windows7-x64

cb140929d0...9d.exe

windows10-2004-x64

3

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

cb140929d00422f88bc8298d840d09f7c0042d30c1e82b92749c4ec04166d19d.exe

Resource

win7-20220901-en

njrat ip trojan

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

cb140929d00422f88bc8298d840d09f7c0042d30c1e82b92749c4ec04166d19d.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

3 signatures

150 seconds

General

Target

cb140929d00422f88bc8298d840d09f7c0042d30c1e82b92749c4ec04166d19d
Size

23KB
MD5

74828f39c6a9e6f9b412358b6003b135
SHA1

5897498a5c3715c74199b844abcc40b2328f553f
SHA256

cb140929d00422f88bc8298d840d09f7c0042d30c1e82b92749c4ec04166d19d
SHA512

4315d0392e9598077ffc9ff854c9a23e994d41712c107b166ba074f0b05ada4abc4e111b6398e3915164307c2043d2631acc9477a789a521c463fc67b79515de
SSDEEP

384:Ywz6+T4IjWZFNwXU0eiNUBdvt6lgT+lLOhXxQmRvR6JZlbw8hqIusZzZbHA:TTbC81NgRpcnu8g

Score

10^/10

ip njrat

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

IP

C2

diffdns.duckdns.org:11767

Mutex

74bb39ec2c6248bd84e17959cd2bdd09

Attributes

reg_key
74bb39ec2c6248bd84e17959cd2bdd09
splitter
|'|'|

Signatures

Njrat family
njrat

Files

cb140929d00422f88bc8298d840d09f7c0042d30c1e82b92749c4ec04166d19d
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 576B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy