General

  • Target

    injector.exe

  • Size

    37KB

  • MD5

    de89dbebf0e731c8094834d998f84898

  • SHA1

    77ceea299a17e8aea20c22531153aabfdcd8e339

  • SHA256

    796ca2cb4e32ec0bebf630bc306f322622bfa724bc8ce9b92186e2387d81b407

  • SHA512

    fe03b5889c7e79e1edb5fc6f6a4844e60201add8b85163cba09ef11d0c72e6efec77eb76a6b89174597bfbc44abd67da9966110af11e20f022114387a97b2e3c

  • SSDEEP

    384:IwNTgiG1C9ZfursvO6yszypBE3XGTUsIDYrAF+rMRTyN/0L+EcoinblneHQM3epG:vNZ5WpszypBEmwsIMrM+rMRa8Nu8Nt

Score
10/10

Malware Config

Extracted

Family

njrat

Version

im523

Botnet

HacKed

C2

imloveratnik.ddns.net:3019

Mutex

5dd8b4acc41fae1bfb69a6c1ca3f6352

Attributes
  • reg_key

    5dd8b4acc41fae1bfb69a6c1ca3f6352

  • splitter

    |'|'|

Signatures

  • Njrat family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • injector.exe
    .exe windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections