njrat | d6f9d87c80ed07f1029ea9fa8176f94340522617f6ee494ef5da27c905f7aa48 | Triage

Submit
Reports

Overview

overview

Static

static

d6f9d87c80...48.exe

windows7-x64

d6f9d87c80...48.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

d6f9d87c80ed07f1029ea9fa8176f94340522617f6ee494ef5da27c905f7aa48.exe

Resource

win7-20221111-en

njrat hacked evasion persistence trojan

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

d6f9d87c80ed07f1029ea9fa8176f94340522617f6ee494ef5da27c905f7aa48.exe

Resource

win10v2004-20221111-en

njrat hacked evasion persistence trojan

windows10-2004-x64

8 signatures

150 seconds

General

Target

d6f9d87c80ed07f1029ea9fa8176f94340522617f6ee494ef5da27c905f7aa48
Size

25KB
MD5

470d6dfe5303ac625ba1ae423159234d
SHA1

f370936d68650cbacb2932b42f09931e1c888abd
SHA256

d6f9d87c80ed07f1029ea9fa8176f94340522617f6ee494ef5da27c905f7aa48
SHA512

351847a38301138705f9043831103185946b19fb0d54c7ac92c0a3fd40c50dfea37a0afa05ecae14ef2186a8aaa34ee80af462e38dc1b13837368f6839dc201c
SSDEEP

384:1+n2650N3qZbATcjRGC5Eo9D46BgnqUhay1ZmRvR6JZlbw8hqIusZzZtE+DpX:6m+71d5XRpcnul+DR

Score

10^/10

hacked njrat

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

HacKed

C2

akramlygr.ddns.net:5552

Mutex

4570927cbaa1cc4178357250adc630cd

Attributes

reg_key
4570927cbaa1cc4178357250adc630cd
splitter
|'|'|

Signatures

Njrat family
njrat

Files

d6f9d87c80ed07f1029ea9fa8176f94340522617f6ee494ef5da27c905f7aa48
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy