Overview

overview

10

Static

static

10

361A301E64...B9.exe

windows7-x64

7

361A301E64...B9.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    361A301E646A4D89FAFB956E3C666E1626B96DAED8DB9.exe

  • Size

    27KB

  • MD5

    3ff70159c7366a46caddf974a3906e0d

  • SHA1

    95e16ebdf61d4220ea872a9bc0bda3f3246b9230

  • SHA256

    361a301e646a4d89fafb956e3c666e1626b96daed8db9b71def59350ac9d0a73

  • SHA512

    4c280d8b70afb77618ba18be0ce4b426f2e389ab86fc4a588a6a25700d6c23a88419378f80a5de0fdfae1fe48291fcad03c5dd4e72e94a57582f16b551352d22

  • SSDEEP

    384:oLf7+aLz+oYDaBcbQMCpPsN9xMRAQk93vmhm7UMKmIEecKdbXTzm9bVhcaElr6eR:WD+wawWkRA/vMHTi9bD

Score
10/10
uwunjrat

Malware Config

Extracted

Family

njrat

Version

v2.0

Botnet

uwu

C2

7.tcp.eu.ngrok.io:14986

Mutex

Windows

Attributes
  • reg_key

    Windows

  • splitter

    |-F-|

Signatures

  • Njrat family
    njrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 361A301E646A4D89FAFB956E3C666E1626B96DAED8DB9.exe
    .exe windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections