Overview

overview

10

Static

static

10

E6042BB173...BD.exe

windows7-x64

10

E6042BB173...BD.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    E6042BB173A230CC8B25F3D2D34D037D7A5AFC687E3BD.exe

  • Size

    37KB

  • MD5

    66ed6930fca16b90ed9d8035c9cb7eb3

  • SHA1

    004edc5857699c18951aa5a842c49c07174858d3

  • SHA256

    e6042bb173a230cc8b25f3d2d34d037d7a5afc687e3bdcefaefa7be756139f98

  • SHA512

    45ffa748da0d4a5c51df8bb5c74a45e96946496112023652ac37f78dbcb518cf3be7f2d7ea9dd290ea2d030892c856636e86d33958be95d48566769513618409

  • SSDEEP

    384:oy+6WIiejtCVLO309Qmykrt4QdqMjf+vWEWYrAF+rMRTyN/0L+EcoinblneHQM3x:yHdGdkrOGb+eE7rM+rMRa8Nus62t

Score
10/10
reportnjrat

Malware Config

Extracted

Family

njrat

Version

im523

Botnet

Report

C2

147.50.252.18:5552

Mutex

ebe3cad1f826293176f623282c4e8207

Attributes
  • reg_key

    ebe3cad1f826293176f623282c4e8207

  • splitter

    |'|'|

Signatures

  • Njrat family
    njrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • E6042BB173A230CC8B25F3D2D34D037D7A5AFC687E3BD.exe
    .exe windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections