General
-
Target
9F09479B2EFD4707BE2208093B81C8E0E523E7C0935FA.exe
-
Size
37KB
-
MD5
f605e086ce952ed6b18fbd244ed904aa
-
SHA1
d19889eb74fe7331eff3438863ac5252bc75d2e5
-
SHA256
9f09479b2efd4707be2208093b81c8e0e523e7c0935fac95ef2b5976377c03dc
-
SHA512
2bcac2b43f3ed424961a43d3f25b7980b4ad5297ec89b29076893e0fd5e2a7d14f1348b78cff6865fb375a2b12f079b867ca5e38cb7cd37034b49d2180fd44ad
-
SSDEEP
384:ouSvEiTbTvpWNcZ0y8fvCv3v3cLkacpjrAF+rMRTyN/0L+EcoinblneHQM3epzXf:dS7TZ38fvCv3E1c1rM+rMRa8Nu82t
Score
10/10
Malware Config
Extracted
Family
njrat
Version
im523
Botnet
HacKed
C2
7.tcp.eu.ngrok.io:16970
Mutex
7e723b2219af20059e9aff24f3e79db3
Attributes
-
reg_key
7e723b2219af20059e9aff24f3e79db3
-
splitter
|'|'|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
9F09479B2EFD4707BE2208093B81C8E0E523E7C0935FA.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections