General
-
Target
be48b389d2657cccf9621e3ae14cdfff.exe
-
Size
93KB
-
MD5
be48b389d2657cccf9621e3ae14cdfff
-
SHA1
8115413f2e41f097981dd7bb1b9dbde373004c7a
-
SHA256
40f78483ec8ca8edb48899936a55742f320d34f774b788e2dda5129a0a02a9af
-
SHA512
bd95185e1ccbff3ef491ec7ade34894177e5b88e322b4ecac5bb3414e7f75ec8ee0d43c8017ecc338fca1ecccf7bd00c261ca35ecb58c108bcba22421af579c9
-
SSDEEP
1536:qUwC+xhUa9urgOBPRNvM4jEwzGi1dDCD0gS:qUmUa9urgObdGi1d8t
Score
10/10
Malware Config
Extracted
Family
njrat
Version
0.7d
Botnet
HacKed
C2
hakim32.ddns.net:2000
budget-centre.at.ply.gg:16694
Mutex
b96477b8df1d8764c15dfd62ab414690
Attributes
-
reg_key
b96477b8df1d8764c15dfd62ab414690
-
splitter
|'|'|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
be48b389d2657cccf9621e3ae14cdfff.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections