General
-
Target
27d5e63f172d73e8e336f7d02d2ef3d9.exe
-
Size
22KB
-
MD5
27d5e63f172d73e8e336f7d02d2ef3d9
-
SHA1
b7ce8ef7bac84a1e06eb0cd93de61a6cc782e94e
-
SHA256
9f7ba5fc26b14c462f4c7795886b86a01cc9e17d194eebf622a69a3362446bdc
-
SHA512
49112df5131d5ae50f6e49460ed78ac72b7b129dddcfb7afd6e2eb1c908d6f41bfab16e85aef2ff9ca42f900b2f79a0a79122e248739ae329e5d080c33a1bab7
-
SSDEEP
384:rBluBPiZCMfdfSJrQbsLRGSIxYVL46pg/i8BD9BmRvR6JZlbw8hqIusZzZlo:COmhtIiRpcnuN
Score
10/10
Malware Config
Extracted
Family
njrat
Version
0.7d
Botnet
teste123
C2
0.tcp.sa.ngrok.io:12760
Mutex
6f440141d3df40063a67f61543c03e8b
Attributes
-
reg_key
6f440141d3df40063a67f61543c03e8b
-
splitter
|'|'|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
27d5e63f172d73e8e336f7d02d2ef3d9.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections