Overview

overview

10

Static

static

10

1dfe93c432...5c.exe

windows7-x64

10

1dfe93c432...5c.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1dfe93c432a71787bec625e9f37aea5c.exe

  • Size

    37KB

  • MD5

    1dfe93c432a71787bec625e9f37aea5c

  • SHA1

    c733d9b06b59e9cd883787998d36cb890a601ef2

  • SHA256

    a01ef3fdd7c3df2e845dca28c37e9244cb1823c655da892ff5d5dacb9db70afd

  • SHA512

    539b983f1ff6b954e1015cd11190d9d6562e23b3c88fd1379a7cec008479a8d8fba9606641d1c11807ee44986bf1f11562f770a448d76d7d0c4ed5bbc3bd0998

  • SSDEEP

    384:tdKvEiTbHvpWNcZ0y8f7CTvvrILkCwE3rAF+rMRTyN/0L+EcoinblneHQM3epzX9:DKXTZ38f7CTv8FwKrM+rMRa8NuLGKt

Score
10/10
hackednjrat

Malware Config

Extracted

Family

njrat

Version

im523

Botnet

HacKed

C2

0.tcp.eu.ngrok.io:16261

Mutex

0dfab35b0ccfd955e7d94fa1f5dce520

Attributes
  • reg_key

    0dfab35b0ccfd955e7d94fa1f5dce520

  • splitter

    |'|'|

Signatures

  • Njrat family
    njrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 1dfe93c432a71787bec625e9f37aea5c.exe
    .exe windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections