Overview

overview

10

Static

static

10

0x00190000...at.exe

windows7-x64

8

0x00190000...at.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    0x001900000000f6bc56dat.dat

  • Size

    37KB

  • MD5

    be6a3110fa2b6fe56e750d45de031daf

  • SHA1

    5f5394bcb4ed695c652089aa75fa673ecfb41f84

  • SHA256

    5e4c29e0334ae8088a2663afb9250692430b9e62affa9c57da68e4e6040f7801

  • SHA512

    a997b9c2272e649b80d17b38c58104669b04bb71026d67f4337f286965a7ba427a8dee2df5317c63d7c07b5d393f3cb5e3f917bc9bd823c3860c254dfdedd144

  • SSDEEP

    384:WxiNb7LsikZ9zNf/1uyU71evdjsOaP0rAF+rMRTyN/0L+EcoinblneHQM3epzXSX:9Nf4l1lU71e9FacrM+rMRa8NuM4ot

Score
10/10
hackednjrat

Malware Config

Extracted

Family

njrat

Version

im523

Botnet

HacKed

C2

positive-be.at.playit.gg:14456

Mutex

dd5b22956b6d7929cd00b2e94303635b

Attributes
  • reg_key

    dd5b22956b6d7929cd00b2e94303635b

  • splitter

    |'|'|

Signatures

  • Njrat family
    njrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 0x001900000000f6bc56dat.dat
    .exe windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections