njrat | e2dce1515c6a419f722ef5a73177ea3d0dbbc3a41519f2ceb6e17e7163a9bbc1 | Triage

Submit
Reports

Overview

overview

Static

static

e2dce1515c...c1.exe

windows7-x64

e2dce1515c...c1.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

e2dce1515c6a419f722ef5a73177ea3d0dbbc3a41519f2ceb6e17e7163a9bbc1.exe

Resource

win7-20220901-en

njrat hacked evasion persistence trojan

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

e2dce1515c6a419f722ef5a73177ea3d0dbbc3a41519f2ceb6e17e7163a9bbc1.exe

Resource

win10v2004-20221111-en

njrat hacked evasion persistence trojan

windows10-2004-x64

8 signatures

150 seconds

General

Target

e2dce1515c6a419f722ef5a73177ea3d0dbbc3a41519f2ceb6e17e7163a9bbc1
Size

23KB
MD5

f293fbdc44a6ea4d239200aa5a90883c
SHA1

2adbf74a0236808909bf111213ba7bcd39c4ea20
SHA256

e2dce1515c6a419f722ef5a73177ea3d0dbbc3a41519f2ceb6e17e7163a9bbc1
SHA512

9d8ff690d6a0f8c1ac1216c8455bcf2e990794269ac92cd6f9883bf83f570ad635100b5b726fc04091dd37fb81dc855cd4d9d5bc6c55129b2e0548f211face37
SSDEEP

384:9QeCo2zmZbQHkJeCdUwBvQ61gjuQBnB9mRvR6JZlbw8hqIusZzZGPR:y5yBVd7RpcnuZJ

Score

10^/10

hacked njrat

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

HacKed

C2

xvirus11.no-ip.biz:3444

Mutex

09a153bc7a06fc4cb25c644d5a3da942

Attributes

reg_key
09a153bc7a06fc4cb25c644d5a3da942
splitter
|'|'|

Signatures

Njrat family
njrat

Files

e2dce1515c6a419f722ef5a73177ea3d0dbbc3a41519f2ceb6e17e7163a9bbc1
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 576B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy