Overview

overview

10

Static

static

10

643581311e...JC.exe

windows7-x64

10

643581311e...JC.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    643581311e09bbc30a8971b588e40a2324be0be06540a4b8ad29f652ff2ad933exe_JC.exe

  • Size

    31KB

  • MD5

    a2510de756ce7c13f5fb3829daa51596

  • SHA1

    5870edfe4ccd04e746516f69538b82516d18ca0d

  • SHA256

    643581311e09bbc30a8971b588e40a2324be0be06540a4b8ad29f652ff2ad933

  • SHA512

    81abb9b037187ab2602837754a6b38e18b8a154168bfbfb295b60e2b9b5badf97f8e97323c4604ef1eae9f43b0877950c9964d4bb14f1d3a0c6412d5de309b0e

  • SSDEEP

    768:ojMXjwpJbb2zxxO56eqvPisfv8yQmIDUu0tizdCj:PkKdisvQVkdj

Score
10/10
hackednjrat

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

HaCkED

C2

5.tcp.eu.ngrok.io:19544

Mutex

144402faa8d005eaa62e8bd44a11e83e

Attributes
  • reg_key

    144402faa8d005eaa62e8bd44a11e83e

  • splitter

    Y262SUCZ4UJJ

Signatures

  • Njrat family
    njrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 643581311e09bbc30a8971b588e40a2324be0be06540a4b8ad29f652ff2ad933exe_JC.exe
    .exe windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections