njrat | 74e5f01f112262731b9bb2d5494fe4fd3522d9676fe51be632f6e11ba23a274d | Triage

Submit
Reports

Overview

overview

Static

static

hacker fae...15.exe

windows7-x64

hacker fae...15.exe

windows10-2004-x64

Sharing

Static task

static1

حموشي njrat

1 signatures

Behavioral task

behavioral1

Sample

hacker faebook 2015.exe

Resource

win7-20220812-en

njrat حموشي evasion persistence trojan

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

hacker faebook 2015.exe

Resource

win10v2004-20220812-en

njrat حموشي evasion persistence trojan

windows10-2004-x64

8 signatures

150 seconds

General

Target

74e5f01f112262731b9bb2d5494fe4fd3522d9676fe51be632f6e11ba23a274d
Size

91KB
MD5

be681f9e5af43f8e53e67386349f6089
SHA1

f54fa088483f0484ebdab6825cf7199d234013a2
SHA256

74e5f01f112262731b9bb2d5494fe4fd3522d9676fe51be632f6e11ba23a274d
SHA512

69eea979be46100e17df9ab1d44ef76ed975396c69f106d8709cf6ec9a7ea98da29ee226963f5180a763c179ee98cc99b1ef235825e4899caf49ca073928eb29
SSDEEP

1536:ePHcvdzpNLmGROlecfdUKEB4vG5TM0j3XGfKUn+5qZGkPBejWmln067qqT:ePHirLN6exdPDjnSKwVZ7BQJ0qt

Score

10^/10

حموشي njrat

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

حموشي

C2

siisa213.no-ip.biz:5552

Mutex

da6ccdf68264751c4b30f87df85cc944

Attributes

reg_key
da6ccdf68264751c4b30f87df85cc944
splitter
|'|'|

Signatures

Njrat family
njrat

Files

74e5f01f112262731b9bb2d5494fe4fd3522d9676fe51be632f6e11ba23a274d
.rar
hacker faebook 2015.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 91KB - Virtual size: 90KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy