Overview

overview

10

Static

static

10

76AD84B6B1...A9.exe

windows7-x64

10

76AD84B6B1...A9.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    76AD84B6B1F6F070801A8AC858C29C55CE83E51986DA9.exe

  • Size

    95KB

  • MD5

    7e185484a4ed378373a8ab476788ba70

  • SHA1

    25fa245100211c900973bc7248122c8e49d71d39

  • SHA256

    76ad84b6b1f6f070801a8ac858c29c55ce83e51986da984082f282b445b634f7

  • SHA512

    6aa951c416089939eab3c99e9713128796d9fa9fc8e3a53b99a778df42e530225ee8fbea4a2908e33ea9bd57bd649893c9c52ae6a0cf8e753bbab9b9b2e51284

  • SSDEEP

    1536:lqk/CNGIoA/wfz+gRJNBmCAHAZgawV6i1dvwDLZKA6a555ptYDwa7PDQE0Pr5kFJ:lR/CGOS+yJDS0D6ahi

Score
10/10
hackednjrat

Malware Config

Extracted

Family

njrat

Version

im523

Botnet

HacKed

C2

4.tcp.ngrok.io:17683

Mutex

8834b7cc7db43b4fc048daa03d67a5a1

Attributes
  • reg_key

    8834b7cc7db43b4fc048daa03d67a5a1

  • splitter

    |'|'|

Signatures

  • Njrat family
    njrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 76AD84B6B1F6F070801A8AC858C29C55CE83E51986DA9.exe
    .exe windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections