General
-
Target
ea3d87648694cce334e7f335f533bb2b.exe
-
Size
43KB
-
MD5
ea3d87648694cce334e7f335f533bb2b
-
SHA1
c55e492807d73ce12225f8ac410c59aa1ba743b4
-
SHA256
4d9512c95d11a376f64ff0a069ff6fa21831a5f3db74a026171c86e38a20a362
-
SHA512
4099b18a815473d32c08e1cbc49b8c53943a578d968532e6f916aebaa95db71925eff60303fdc543fd1230172147fa7bb0ca75aeb6ad9f9b488270e06a479ef7
-
SSDEEP
384:b8Zy3EHeyCEFmVoybD3U1OEKE6E8TMghYzEIij+ZsNO3PlpJKkkjh/TzF7pWnpi9:b6hHeyVAVlbTUHYwgYuXQ/osW+L
Score
10/10
Malware Config
Extracted
Family
njrat
Version
Njrat 0.7 Golden By Hassan Amiri
Botnet
avocadic
C2
4.tcp.eu.ngrok.io:16977
Mutex
Windows Update
Attributes
-
reg_key
Windows Update
-
splitter
|Hassan|
Signatures
-
Njrat family
Files
-
ea3d87648694cce334e7f335f533bb2b.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections