General
-
Target
1bf2a532c6aaf75d7222ef2a13dbb775.exe
-
Size
37KB
-
MD5
1bf2a532c6aaf75d7222ef2a13dbb775
-
SHA1
16c192d96b0e02243727741f933c2c000faba8c4
-
SHA256
492367c2344fe8d736ea101ff75205bf900cf3947a00ab955b5f5aef4124639d
-
SHA512
b48a1edf98b148f7a3be9d5d4c3d9885f362119c707886f8007349a552cb325ef012113c19d66810b7bfd3e86677c7c464ed626ba69ab6d84c98bf3c93b55181
-
SSDEEP
384:09uH2KMizdVjnBhFbJ8ycPN/fnfwacRTrAF+rMRTyN/0L+EcoinblneHQM3epzX:X2gVlLJfcPN/XlcVrM+rMRa8NuQzt
Score
10/10
Malware Config
Extracted
Family
njrat
Version
im523
Botnet
HacKed
C2
2.tcp.eu.ngrok.io:16445
Mutex
a2c71fdf517133237ff260aeec835789
Attributes
-
reg_key
a2c71fdf517133237ff260aeec835789
-
splitter
|'|'|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
1bf2a532c6aaf75d7222ef2a13dbb775.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections