Behavioral task
behavioral1
Sample
da1b306f486e416cc2c0254b610a066035901f5e133aa000501d0a3ce24a4520.exe
Resource
win7-20230220-en
Behavioral task
behavioral2
Sample
da1b306f486e416cc2c0254b610a066035901f5e133aa000501d0a3ce24a4520.exe
Resource
win10v2004-20230220-en
General
-
Target
8a1b87eb807e29e30acf1b14c966a195.bin
-
Size
10KB
-
MD5
096cec65fdf156fa3911892d19628694
-
SHA1
4e571f135971280a5ca7d05ca6823c5da0ce8f68
-
SHA256
aa117305eace5176e87ec38c2e8492693cb85146d97e84b832de9ab04353cfb8
-
SHA512
d624f35a6e4ade738203ef96d5961a24b748d42d0de202ffabbe3b304f5fb5e5e4e884d49fe8920877efb746158ccc956ddad2fa8606178e3f8cd95ce1c78cc3
-
SSDEEP
192:JoHb/KqzQG+uMvYmCsMw/38ittA9vF8vS02HRoOoXnXCGjGsJsyvFt4bjIn4lHjx:JoHb/K3uMcsMw/38/9vF8vS0gRAS/Idm
Malware Config
Extracted
njrat
0.7NC
NYAN CAT
191.89.243.236:6543
3a28528a623
-
reg_key
3a28528a623
-
splitter
@!#&^%$
Signatures
-
Njrat family
Files
-
8a1b87eb807e29e30acf1b14c966a195.bin.zip
Password: infected
-
da1b306f486e416cc2c0254b610a066035901f5e133aa000501d0a3ce24a4520.exe