njrat | afdd7d3958924a8d4a6e65c86fab7ff2[.]bin | Triage

Submit
Reports

Overview

overview

Static

static

9fb4fbe5ad...da.exe

windows7-x64

8

9fb4fbe5ad...da.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

9fb4fbe5ad2fa5800b16ad6aadfa8be11e7b62b15f07c41e1e2e833cbbf152da.exe

Resource

win7-20221111-en

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

9fb4fbe5ad2fa5800b16ad6aadfa8be11e7b62b15f07c41e1e2e833cbbf152da.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

9 signatures

150 seconds

General

Target

afdd7d3958924a8d4a6e65c86fab7ff2.bin
Size

34KB
MD5

7029efff8364fba5fb8c1cbd2a0455a6
SHA1

581a6922436af12a22947b038961c4a3e4ddcda3
SHA256

eb48dbc56fc67a5df8cdab360f8d0d1beaba068270bf565fbddab66f7f19f487
SHA512

9f3407dfaf2e496b12f207c65c86c9ac21576908b7f4f56ccbb1ad1c7a6ed4c0a116de6e50f760b8f368288126ddd7e21e2d13be206c633e12cc5e5cce89613d
SSDEEP

768:BoMBOIYZvdTRkvj3J7M1XZEmxSDs/1Ld7mH3WQtZXmGw11E:9QVRAo1XZEmxSY/qRZW31S

Score

10^/10

hacked njrat

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

HacKed

C2

FRANSESCOTg4LjE2NS4xFRANSESCOjAuFRANSESCOTIz:NjUyMw==

Mutex

770121bc979c71cb19e14384c403a6c9

Attributes

reg_key
770121bc979c71cb19e14384c403a6c9
splitter
|'|'|

Signatures

Njrat family
njrat

Files

afdd7d3958924a8d4a6e65c86fab7ff2.bin
.zip

Password: infected
9fb4fbe5ad2fa5800b16ad6aadfa8be11e7b62b15f07c41e1e2e833cbbf152da.exe
.exe windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 92KB - Virtual size: 91KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy