General
-
Target
file.exe
-
Size
43KB
-
MD5
58dcb48b8130d5dee3a3865501f88230
-
SHA1
f901ad19e6a731cc1dec893e9aa0adb49fcaca51
-
SHA256
e37bf9be1d090c5fd6c300e2c579f585def5140d184eff2c04c2c995f1fcc6c7
-
SHA512
4ccebd4999450e1ac425fb97a52b433e41bdad1c61817528d22e18744cdd571848569fa4116dcdd7262ef88d485df7c645d7840281b930e728f1180fdb17b789
-
SSDEEP
384:YZymSNUst+3gUy6x1ZcwoEwjdJEzQIij+ZsNO3PlpJKkkjh/TzF7pWn6/greT0pe:uWwQh6/ZFYjWuXQ/ob3+L
Score
10/10
Malware Config
Extracted
Family
njrat
Version
Njrat 0.7 Golden By Hassan Amiri
Botnet
HacKed
C2
79.126.55.29:7777
Mutex
Windows Update
Attributes
-
reg_key
Windows Update
-
splitter
|Hassan|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
file.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections