njrat | 38943245612958f52858bd6ee9e2cdf6b3fe5cee969c171c15f3a87bdcf2e9fd | Triage

Submit
Reports

Overview

overview

Static

static

3894324561...fd.exe

windows7-x64

3894324561...fd.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

38943245612958f52858bd6ee9e2cdf6b3fe5cee969c171c15f3a87bdcf2e9fd.exe

Resource

win7-20221111-en

njrat hacked evasion persistence trojan

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

38943245612958f52858bd6ee9e2cdf6b3fe5cee969c171c15f3a87bdcf2e9fd.exe

Resource

win10v2004-20220901-en

njrat hacked evasion persistence trojan

windows10-2004-x64

9 signatures

150 seconds

General

Target

38943245612958f52858bd6ee9e2cdf6b3fe5cee969c171c15f3a87bdcf2e9fd
Size

29KB
MD5

f05b082b934f6618634782266d00babe
SHA1

9d7c4af95496759f6dd88ee624e5dc48dcc8156f
SHA256

38943245612958f52858bd6ee9e2cdf6b3fe5cee969c171c15f3a87bdcf2e9fd
SHA512

1d259fc73c891089642c9ce52a5918cc6a2a61db137d0a4bd4f42aca926477dba01bca17e7bd68041b4032c80087cdc302c645842db692c304c3760507958c2e
SSDEEP

768:6K7ZW4Oakw1BJX7oqsKuelBKh0p29SgRtk:6K78KEJKLKhG29jtk

Score

10^/10

hacked njrat

Malware Config

Extracted

Family

njrat

Version

0.6.4

Botnet

HacKed

C2

matrix251.webhop.me:9999

Mutex

23556fb1360f366337f97c924e76ead3

Attributes

reg_key
23556fb1360f366337f97c924e76ead3
splitter
|'|'|

Signatures

Njrat family
njrat

Files

38943245612958f52858bd6ee9e2cdf6b3fe5cee969c171c15f3a87bdcf2e9fd
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 576B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy