njrat | c7e688f98e7e4fd2db82511cdd083aaffe42f43051572b22526563fb82d0718b | Triage

Submit
Reports

Overview

overview

Static

static

c7e688f98e...8b.exe

windows7-x64

c7e688f98e...8b.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

c7e688f98e7e4fd2db82511cdd083aaffe42f43051572b22526563fb82d0718b.exe

Resource

win7-20220901-en

njrat hacked evasion persistence trojan

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

c7e688f98e7e4fd2db82511cdd083aaffe42f43051572b22526563fb82d0718b.exe

Resource

win10v2004-20220901-en

njrat hacked evasion persistence trojan

windows10-2004-x64

9 signatures

150 seconds

General

Target

c7e688f98e7e4fd2db82511cdd083aaffe42f43051572b22526563fb82d0718b
Size

244KB
MD5

ed0b2715f069cc14c8c5f0b87ebaf9a1
SHA1

5df5e2e36219c553db50c759006eba35de565573
SHA256

c7e688f98e7e4fd2db82511cdd083aaffe42f43051572b22526563fb82d0718b
SHA512

6d394095a6eb4116034bb13c7291a937e266a5c63c2b1b7a1a046b8bb5a656715e11804a142e03f2d7649302feb28702e51edadd3972ea9078660bd3a9ba4827
SSDEEP

6144:nN9T2i6dgZS13ihWwPrGl0jnR5OVHYUez:72i6OEkhwl05

Score

10^/10

hacked njrat

Malware Config

Extracted

Family

njrat

Version

0.6.4

Botnet

HacKed

C2

195.208.220.145:1805

Mutex

043ed596af7365236306a463494dc0f4

Attributes

reg_key
043ed596af7365236306a463494dc0f4
splitter
|'|'|

Signatures

Njrat family
njrat

Files

c7e688f98e7e4fd2db82511cdd083aaffe42f43051572b22526563fb82d0718b
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 216KB - Virtual size: 216KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy