Overview

overview

10

Static

static

10

d2c40374_1...9a.exe

windows7-x64

8

d2c40374_1...9a.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    d2c40374_18e54208b0c6e7792d5b48f13846dee4f2f653409b9a2133d7c6b0101a7dfc9a.exe

  • Size

    93KB

  • MD5

    d2c4037487e996b134c5e9585fa08a70

  • SHA1

    39a260aef0bdfbad987d1732dc78c616217d67b4

  • SHA256

    18e54208b0c6e7792d5b48f13846dee4f2f653409b9a2133d7c6b0101a7dfc9a

  • SHA512

    5bfd276f70384f8618f14fcb0af8290ec901bf9454b2b558c4fe58c70bb92f09e4da8f7d53d2951b85fb309a0bd86d76795adf7168068b1e53ca42e4d0820526

  • SSDEEP

    1536:u2+QIBlfGQFk2ZonmzaMxjEwzGi1dDyDSgS:u2ctFk2ZonmOMOi1d83

Score
10/10
ponnjrat

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

pon

C2

ODFRANSESCOuFRANSESCOzEuFRANSESCOjE3Ljgy:MTgyNg==

Mutex

0b2a47772a12c4b95bff707720254c09

Attributes
  • reg_key

    0b2a47772a12c4b95bff707720254c09

  • splitter

    |'|'|

Signatures

  • Njrat family
    njrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • d2c40374_18e54208b0c6e7792d5b48f13846dee4f2f653409b9a2133d7c6b0101a7dfc9a.exe
    .exe windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections