Behavioral task
behavioral1
Sample
0x000600000000b2d2-55.exe
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
0x000600000000b2d2-55.exe
Resource
win10v2004-20220812-en
General
-
Target
0x000600000000b2d2-55.dat
-
Size
37KB
-
MD5
796efce929adb1a5a248eb60440cf8cb
-
SHA1
3db9c7325099854bcfbe1108228982daca3f86d3
-
SHA256
e6600d367719a89437eefc72638d9f72e8b0a4862f6a631c9c0b9220cf5504b6
-
SHA512
4c1eec85aeef14373a0e5c2bdebda87abbc7bdfb8789417cbc62b2b1a756ed2ea30ff92fa2c9feebc30993a790e3de8021a5395044bbfdd00cb888cc34835bad
-
SSDEEP
384:PIiKMizdnjnBhFbJ8ycPzNX9Bwy25ArAF+rMRTyN/0L+EcoinblneHQM3epzXxN1:AignlLJfcPzNXt2qrM+rMRa8NuHtt
Malware Config
Extracted
njrat
im523
HacKed
outside-fine.at.ply.gg:6549
78e0d93fb2344857b8ed5232e4bc04ef
-
reg_key
78e0d93fb2344857b8ed5232e4bc04ef
-
splitter
|'|'|
Signatures
-
Njrat family
Files
-
0x000600000000b2d2-55.dat.exe windows x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 35KB - Virtual size: 34KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1024B - Virtual size: 576B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ