njrat | a0a110c9af91d3d098bed359f65a9e4f[.]exe | Triage

Submit
Reports

Overview

overview

Static

static

a0a110c9af...4f.exe

windows7-x64

a0a110c9af...4f.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

a0a110c9af91d3d098bed359f65a9e4f.exe

Resource

win7-20220901-en

njrat hacked evasion trojan

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

a0a110c9af91d3d098bed359f65a9e4f.exe

Resource

win10v2004-20220812-en

njrat hacked evasion trojan

windows10-2004-x64

7 signatures

150 seconds

General

Target

a0a110c9af91d3d098bed359f65a9e4f.exe
Size

37KB
MD5

a0a110c9af91d3d098bed359f65a9e4f
SHA1

8ab50f798e0cfffeb912d75e55eb011c61b5f99a
SHA256

faad383afb2501153b564c132b0e270808ed2ebdf45de8c7fcca3891056bc103
SHA512

eca4e6bea1e428c734a71fdcb2069b2dd7b8a5dc9a3d3a6f2a2b5a76f0d0784e07d43fef1bbe6d130042c5963ffdd84d94a0bf98d436c999c3599dae4ab43c08
SSDEEP

384:ykqIiuVjtD+P3V+y0bf2TKtvNpsuKfdrAF+rMRTyN/0L+EcoinblneHQM3epzX5J:VNmV10bf2TKtLlK1rM+rMRa8Nuc2t

Score

10^/10

hacked njrat

Malware Config

Extracted

Family

njrat

Version

im523

Botnet

Hacked

C2

6.tcp.ngrok.io:15725

Mutex

67028ac33a0f7bb4d331743ed451743e

Attributes

reg_key
67028ac33a0f7bb4d331743ed451743e
splitter
|'|'|

Signatures

Njrat family
njrat

Files

a0a110c9af91d3d098bed359f65a9e4f.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 35KB - Virtual size: 34KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 576B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy