General
-
Target
New Client.exe
-
Size
65KB
-
MD5
5775eaa500c7f8f12fb486b3d895ac6a
-
SHA1
acc96549a142e278b3d63f5df434735fed2f1c44
-
SHA256
4c6cb65e59ba56cdfd855b3a2a480d90b1745c8e9e217daa050cd498ab82a7cd
-
SHA512
0041e3b675b2bc4a8325650b12bc23d7cbbbf40620c5c5f91d1eb76503941cee192bae756f93d8a0a44fcfddac03b8c5ca5cec0189c124bfc71f8591e161f10e
-
SSDEEP
1536:Aug0VoN36tVQviFw1kAqoYV+3+/1BnvApfLteF3nLrB9z3nLaF9b1S9vM:Aug0VoN36tVQviFCXm9BnKfWl9z7aF91
Score
10/10
Malware Config
Extracted
Family
njrat
Version
Platinum
Botnet
HacKed
C2
127.0.0.1:1278
Mutex
Client.exe
Attributes
-
reg_key
Client.exe
-
splitter
|Ghost|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
New Client.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections