njrat | e8f4ef0a444e56a82321e61817f6ec0d4e1bff4014be51d989d03cd2e89f602e | Triage

Submit
Reports

Overview

overview

Static

static

e8f4ef0a44...2e.exe

windows7-x64

8

e8f4ef0a44...2e.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

tintcryptertest njrat

1 signatures

Behavioral task

behavioral1

Sample

e8f4ef0a444e56a82321e61817f6ec0d4e1bff4014be51d989d03cd2e89f602e.exe

Resource

win7-20220901-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

e8f4ef0a444e56a82321e61817f6ec0d4e1bff4014be51d989d03cd2e89f602e.exe

Resource

win10v2004-20220812-en

njrat evasion trojan

windows10-2004-x64

4 signatures

150 seconds

General

Target

e8f4ef0a444e56a82321e61817f6ec0d4e1bff4014be51d989d03cd2e89f602e
Size

23KB
MD5

d179c378b7c5665a8a5a726d9e19f987
SHA1

33d3917a37a370fe22dee3207ddc16538f485072
SHA256

e8f4ef0a444e56a82321e61817f6ec0d4e1bff4014be51d989d03cd2e89f602e
SHA512

aaf585d6b59110d3adb9f476ef4733d3f76e83f4c306cd7249a65fc118c55de544fbd77e4a540e3c5b610dc70462dccd5fee1e868fcff5056f59786701f032fc
SSDEEP

384:TYmdk8XvCJrQLdRGSiEYF7Y65gPyx6BDXNRmRvR6JZlbw8hqIusZzZHT:8wWkti/aeRpcnu8

Score

10^/10

tintcryptertest njrat

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

TintCrypterTest

C2

labrechadera.duckdns.org:474

Mutex

b19d8da58e7f759abe7ab4076045fca4

Attributes

reg_key
b19d8da58e7f759abe7ab4076045fca4
splitter
|'|'|

Signatures

Njrat family
njrat

Files

e8f4ef0a444e56a82321e61817f6ec0d4e1bff4014be51d989d03cd2e89f602e
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 576B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy