Overview

overview

10

Static

static

10

a555c79d47...10.exe

windows7-x64

10

a555c79d47...10.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    a555c79d472d62eb4869972b2cd2af10.exe

  • Size

    86KB

  • MD5

    a555c79d472d62eb4869972b2cd2af10

  • SHA1

    a0009dfe9b7189a5f0b00343c2f6c54a6bdfaeac

  • SHA256

    6d7cd5fdadd6ccd172a5211a9a8cd60b865f6761c504f7ab3b78c5d711c061e2

  • SHA512

    6941c42bbe4a57c8ae494f53166728fae903c7b60ea808703eac1c02bf2ffbac5f674184303ec4a45f557b5730d992fc4b88a5c92d8e820749d38557d372258d

  • SSDEEP

    1536:o9OceqRCn+quXQQp3MZ9OceqRCn+quXQQp3M:2OVj+33cOVj+33

Score
10/10
}l{?????njrat

Malware Config

Extracted

Family

njrat

Version

Njrat 0.7 Golden By Hassan Amiri

Botnet

}l{?????

C2

2.tcp.eu.ngrok.io:13250

Mutex

Windows Update

Windows Update
Attributes
  • reg_key

    Windows Update

  • splitter

    |Hassan|

Signatures

  • Njrat family
    njrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • a555c79d472d62eb4869972b2cd2af10.exe
    .exe windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections