Behavioral task
behavioral1
Sample
Users/win7/Desktop/Server.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
Users/win7/Desktop/Server.exe
Resource
win10v2004-20221111-en
General
-
Target
9bd626994cd735b87e16373579f887dd8f17ee955a7cfc7a5840420bc9724492
-
Size
11KB
-
MD5
8c9224715516df79631e045d204605f5
-
SHA1
32b4e1ab5c83e96d08dd599ed8d0f1ba388e7be3
-
SHA256
9bd626994cd735b87e16373579f887dd8f17ee955a7cfc7a5840420bc9724492
-
SHA512
8d6fdee6a1802fc94e47d2e246ab76bffc3980a0217d1fc6de277ca3d6256db0346554c56fcbe3f62a94ad758c9547edf3486c53350f93c3c9795200a31c0c18
-
SSDEEP
192:gOYVidOJYx4oJgn26r4GkFDXiRNDvYBm9QF2k7b2iAjIDc6aK:gv8m8jJI+aFvYBmh4b2i53aK
Malware Config
Extracted
njrat
0.7d
hacke
yusifhacker123.no-ip.biz:5552
b5fa757354bbe4709ff7d91d5edc7795
-
reg_key
b5fa757354bbe4709ff7d91d5edc7795
-
splitter
|'|'|
Signatures
-
Njrat family
Files
-
9bd626994cd735b87e16373579f887dd8f17ee955a7cfc7a5840420bc9724492.zip
-
Users/win7/Desktop/Server.exe.exe windows x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 21KB - Virtual size: 21KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1024B - Virtual size: 576B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ