General
-
Target
121212121212.exe
-
Size
37KB
-
MD5
a4aa47592e516c1ecdc312223448c17a
-
SHA1
004711954b2a0271299ecf26cec0727c6376d673
-
SHA256
9228c84c994a1a711d3581f904884b087c483b5fedbf828e16c77fbaebf1aa9c
-
SHA512
d405283f7f0f28f91e269b7a824249e66c7f4d5d5b5e8967d76625737f3cb5a30a5c75fb74064648a42be25ba9977a1be8201e1aaeac575ccfc7a88f8d17029f
-
SSDEEP
384:++5MiLjBndznNCyMGmHqevLNcGsrthrAF+rMRTyN/0L+EcoinblneHQM3epzXGEz:nVRNRMGmHnpVsZhrM+rMRa8NuQExt
Score
10/10
Malware Config
Extracted
Family
njrat
Version
im523
Botnet
HacKed
C2
t2wentyh2cker.ddns.net:80
Mutex
33970472bb426549b9f761cf6cf41bc5
Attributes
-
reg_key
33970472bb426549b9f761cf6cf41bc5
-
splitter
|'|'|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
121212121212.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections