General
-
Target
a1d6930b0054f79d8e2bcef0700fc285.exe
-
Size
30KB
-
MD5
a1d6930b0054f79d8e2bcef0700fc285
-
SHA1
c33e27a85009d1b2ede63e8d7c4fa407b75391ae
-
SHA256
e3c7d19d22f37f8f290c9fca7f49c0e807abbe8a0b91b8da2c2bc5f762973df5
-
SHA512
c4d274c6eabf0c2ac9e96679a27cf3e807159a3edc9ee500a70442f3602de1bed1d1a981f717b3987fd751bced45d6f535e3e63a841280932e95741080022930
-
SSDEEP
768:3hYRtljZ/nizxNO15eLUfEuXTv6rQmIDUu0ti6fQj:+LjOZlurAQVkBQj
Score
10/10
Malware Config
Extracted
Family
njrat
Version
0.7d
Botnet
MyBot
C2
83.31.217.82:6522
Mutex
257efbd18a84b4619647c16b185f9a13
Attributes
-
reg_key
257efbd18a84b4619647c16b185f9a13
-
splitter
Y262SUCZ4UJJ
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
a1d6930b0054f79d8e2bcef0700fc285.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections