032b98721646265b21e3f85c51de62a821c93723769cb665333a7c1f6bfdefd4 | Triage

Submit
Reports

Overview

overview

Static

static

032b987216...d4.exe

windows7-x64

032b987216...d4.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

032b98721646265b21e3f85c51de62a821c93723769cb665333a7c1f6bfdefd4.exe

Resource

win7-20220901-en

njrat ربح evasion persistence trojan

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

032b98721646265b21e3f85c51de62a821c93723769cb665333a7c1f6bfdefd4.exe

Resource

win10v2004-20221111-en

njrat ربح evasion persistence trojan

windows10-2004-x64

10 signatures

150 seconds

General

Target

032b98721646265b21e3f85c51de62a821c93723769cb665333a7c1f6bfdefd4
Size

109KB
MD5

67a4efbae5227f398bd6b1037b530078
SHA1

09126848b022b5bfbe25bf3bcce97edcfd2a7503
SHA256

032b98721646265b21e3f85c51de62a821c93723769cb665333a7c1f6bfdefd4
SHA512

9698446fe24b75852eb0e49df0b77d677cf146fe450e7184ef538af593d4a32f8a2e070bcd765decd9d65e3c74102fe027ac2d877f8c3e30b888ff1681c91d31
SSDEEP

3072:2Q31Z312oTHV9gqdC7o3xG39eVL7dky9N:xj12o9k73gx5N

Score

N/A

Malware Config

Signatures

Files

032b98721646265b21e3f85c51de62a821c93723769cb665333a7c1f6bfdefd4
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Code Sign

6c:7c:17:23:38:1a:15:a4:41:61:85:1a:89:4b:f5:45
Certificate

Issuer

CN=SmartFTP Client

Not Before

02/01/2014, 12:56

Not After

02/01/2114, 12:56

Subject

CN=SmartFTP Client

37:5a:6d:ea:60:25:67:e7:69:5e:7d:85:f9:15:5a:04:fe:56:74:f4
Signer

Actual PE Digest

37:5a:6d:ea:60:25:67:e7:69:5e:7d:85:f9:15:5a:04:fe:56:74:f4

Digest Algorithm

sha1

PE Digest Matches

true

Signature Validations

Trusted

false

Verification

Signing Certificate

CN=SmartFTP Client

24/11/2022, 14:54
Valid: false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 80KB - Virtual size: 79KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy