General
-
Target
1b4e1f53acdf05efd2fcc839b5b92c1d.exe
-
Size
31KB
-
MD5
1b4e1f53acdf05efd2fcc839b5b92c1d
-
SHA1
5795a674d13800b109c38dafd155a9d6db35cc10
-
SHA256
1dcab99dbd089d1501abb6b1558b8f24b18781a64d08a366414888d432aff31e
-
SHA512
d9754bbcb57778342d0e8a3ae2d07c8eb24c47ee2b3b05fdc7f7dae16a4f23db2888226cf77601fe02d789a99662b07051fbf660862c51ff419b00157dfdc05b
-
SSDEEP
768:q81Z6U513vqzxl+r9UD3Z4gLv8wSQmIDUu0tiFlj:+IqR48BSQVkCj
Score
10/10
Malware Config
Extracted
Family
njrat
Version
0.7d
Botnet
doncky
C2
MRHACKER2020-38092.portmap.host:38092
Mutex
938cd6c49cf76d405cdf2e2a34f6ed3d
Attributes
-
reg_key
938cd6c49cf76d405cdf2e2a34f6ed3d
-
splitter
Y262SUCZ4UJJ
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
1b4e1f53acdf05efd2fcc839b5b92c1d.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections