njrat | 68461dda4127d90c4aea9fc6d3e11b0a35dd20ab25a9cd6d31a6aa28da34c7ab | Triage

Submit
Reports

Overview

overview

Static

static

68461dda41...ab.exe

windows7-x64

68461dda41...ab.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

68461dda4127d90c4aea9fc6d3e11b0a35dd20ab25a9cd6d31a6aa28da34c7ab.exe

Resource

win7-20220812-en

njrat hacked evasion persistence trojan

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

68461dda4127d90c4aea9fc6d3e11b0a35dd20ab25a9cd6d31a6aa28da34c7ab.exe

Resource

win10v2004-20220812-en

njrat hacked evasion persistence trojan

windows10-2004-x64

9 signatures

150 seconds

General

Target

68461dda4127d90c4aea9fc6d3e11b0a35dd20ab25a9cd6d31a6aa28da34c7ab
Size

23KB
MD5

d21368b2b6614e16c8e362fb097a326a
SHA1

bc387139fcbc7480888d95fdfa882f8e709df456
SHA256

68461dda4127d90c4aea9fc6d3e11b0a35dd20ab25a9cd6d31a6aa28da34c7ab
SHA512

dab1fb5addab8f109503b19e929ba1b0d42923c23874693a38b45bfafb40afb1af3dec25fe8f820ef3a7e943242f33940adf3fb9dd54abc89bebc181ad3b66ad
SSDEEP

384:KQeCo2zmZbQHkJeCdUwBvQ61gjuQBnB9mRvR6JZlbw8hqIusZzZO3:V5yBVd7Rpcnu3

Score

10^/10

hacked njrat

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

HacKed

C2

maro5252.no-ip.biz:5552

Mutex

2cf9dcb8c91f1c650118c29065947f29

Attributes

reg_key
2cf9dcb8c91f1c650118c29065947f29
splitter
|'|'|

Signatures

Njrat family
njrat

Files

68461dda4127d90c4aea9fc6d3e11b0a35dd20ab25a9cd6d31a6aa28da34c7ab
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 576B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy