njrat | 2126af6181ed02ba077161bd8c3693d1439ed0c03c4279890c544f863a971d14 | Triage

Submit
Reports

Overview

overview

Static

static

2126af6181...14.exe

windows7-x64

2126af6181...14.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

2126af6181ed02ba077161bd8c3693d1439ed0c03c4279890c544f863a971d14.exe

Resource

win7-20220901-en

njrat hacked evasion persistence trojan

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

2126af6181ed02ba077161bd8c3693d1439ed0c03c4279890c544f863a971d14.exe

Resource

win10v2004-20220901-en

njrat hacked evasion persistence trojan

windows10-2004-x64

9 signatures

150 seconds

General

Target

2126af6181ed02ba077161bd8c3693d1439ed0c03c4279890c544f863a971d14
Size

23KB
MD5

e581688ff9d673e259bec179f7730acc
SHA1

9b78322e36a0ba651abb330fd65c32288b57a46d
SHA256

2126af6181ed02ba077161bd8c3693d1439ed0c03c4279890c544f863a971d14
SHA512

242b3d6782557b76ae4be12c311f5fe3ebc14d4aa22999d07fbabcb8b0a6873078c9bad72304731828b9cc4a2a2ad89d92677f5084421f5303d6d4fa08d8c6bf
SSDEEP

384:OslUlEvOEJ8xWwYJOMiOBZEdj1567gtwi5HhbQmRvR6JZlbw8hqIusZzZVC:HeEvwIlLMRpcnur

Score

10^/10

hacked njrat

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

HacKed

C2

kjsf6gj9.no-ip.info:5552

Mutex

7342e54e09dcdb1ce811b98c70194169

Attributes

reg_key
7342e54e09dcdb1ce811b98c70194169
splitter
|'|'|

Signatures

Njrat family
njrat

Files

2126af6181ed02ba077161bd8c3693d1439ed0c03c4279890c544f863a971d14
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 576B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy