General
-
Target
neeeeeeeeeeeeeeeeeeeee.exe
-
Size
69KB
-
MD5
aff9281f6769082af3874e8a49e04861
-
SHA1
0736a03b6896931f0154d79abfe75d7464cb6569
-
SHA256
bb72bee9a1a8b1a6add89c0bc372d0fd1ad07ce87c75613b6ff474580f42658d
-
SHA512
7d28b3a2bda3e6543cc766d7009be6c3aa43b8a911f3f787830ec8fe1e19632e29080eeeb719efa6808d5016237bd54f21c2f12a49611faceccef7237bee80a8
-
SSDEEP
1536:ZLPp/BWTpYHMC8tIifn9sjLTvAhbvA3teOWTkuLPZ9b3mJoxug0ZdRaEX1iNyaF/:ZLPp/BWTpYHMC8t5VCLTAbvcwkWR9bxj
Score
10/10
Malware Config
Extracted
Family
njrat
Version
Platinum
Botnet
HacKed
C2
127.0.0.1:5678
Mutex
win64.exe
Attributes
-
reg_key
win64.exe
-
splitter
|Ghost|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
neeeeeeeeeeeeeeeeeeeee.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections