njrat | c2c6e6883369b985f571a4352d81b79b0994fc581bff20f72460fec5feb1916f | Triage

Submit
Reports

Overview

overview

Static

static

c2c6e68833...6f.exe

windows7-x64

c2c6e68833...6f.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

c2c6e6883369b985f571a4352d81b79b0994fc581bff20f72460fec5feb1916f.exe

Resource

win7-20220812-en

njrat hacked evasion persistence trojan

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

c2c6e6883369b985f571a4352d81b79b0994fc581bff20f72460fec5feb1916f.exe

Resource

win10v2004-20220812-en

njrat hacked evasion persistence trojan

windows10-2004-x64

8 signatures

150 seconds

General

Target

c2c6e6883369b985f571a4352d81b79b0994fc581bff20f72460fec5feb1916f
Size

23KB
MD5

f8e71f0e0827c4bef0fdf7e1f47a4f40
SHA1

3cf219da5d2a61efc67e5490ca5e61e3827eae4e
SHA256

c2c6e6883369b985f571a4352d81b79b0994fc581bff20f72460fec5feb1916f
SHA512

bf827021eae988c1ec0967cec159011fd91122ad6c5c9c649dcf2d2af886868b6ce2983b7175c2eeeaa7d053c7c1073f7c80e596ca7f7ce1622a2ba6a634dec8
SSDEEP

384:R1MKFYuEEhERvoBG16Xuy0MHNw6Tg1Y+75JTFmRvR6JZlbw8hqIusZzZ9A:R+W4V6+yDRpcnux

Score

10^/10

hacked njrat

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

HacKed

C2

hicham2241990.no-ip.biz:1177

Mutex

f5083fb0a6264dfa07716a4b5054023f

Attributes

reg_key
f5083fb0a6264dfa07716a4b5054023f
splitter
|'|'|

Signatures

Njrat family
njrat

Files

c2c6e6883369b985f571a4352d81b79b0994fc581bff20f72460fec5feb1916f
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 576B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy