Resubmissions

03/12/2022, 09:21

221203-lbt7maab78 10

03/12/2022, 08:51

221203-kr5smahd78 10

General

  • Target

    691a39afe11e7f9d49332ca30a272708.exe

  • Size

    2.0MB

  • MD5

    691a39afe11e7f9d49332ca30a272708

  • SHA1

    c315bc96feae17e521e40b2f921ff8c7de29368d

  • SHA256

    00693c43c36b65ecaae75389c0b822e574f8101b9cd28255e85c39c08b2f58ad

  • SHA512

    fd02a05ca804ad380d6b51a7073eebd9bcaeb6f7eca13e9a19b49335ee992536ca7e5be78909f392960f085959dfa8134b25598d2e1f98ad06695baf879ff05d

  • SSDEEP

    384:TZyMeHkYz/wpa9GP4Uy277YiKMMQglhOrl9D9O5UE5QzwBlpJNakkjh/TzF7pWnl:dekKR4gh2/YtwgAwvQO+2R+L

Score
10/10

Malware Config

Extracted

Family

njrat

Version

Njrat 0.7 Golden By Hassan Amiri

Botnet

Windows Sevice

C2

7.tcp.eu.ngrok.io:18458

Mutex

Windows Service

Attributes
  • reg_key

    Windows Service

  • splitter

    |Hassan|

Signatures

Files

  • 691a39afe11e7f9d49332ca30a272708.exe
    .exe windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections