Overview

overview

10

Static

static

10

0d3b1f11c2...d9.exe

windows7-x64

8

0d3b1f11c2...d9.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0d3b1f11c24df1c5b6a7628455bdbbd9.exe

  • Size

    301KB

  • MD5

    0d3b1f11c24df1c5b6a7628455bdbbd9

  • SHA1

    0e48592bd640b3745c6e2c7d12766e51a5f90498

  • SHA256

    6d6ed43b2748276175ca7f7253afe3a932431ed1fd7ec0949f2561f1644ce70c

  • SHA512

    af8c17667a204d98373b97bc2a9fb8cca8405aa205d1d4e68f96df3f956c5226da1ee7602107f5c936f3838dbaafd097abfe585ecfa84a856057921835e4cce8

  • SSDEEP

    1536:2v+R1CNpqUj+gRJNqBGBsqTxwygTgDlCeZDxVs3xH3fU4/9kMruUvcRx:2mXCPd+yJQwwyg03BrsZc4/Xve

Score
10/10
hackednjrat

Malware Config

Extracted

Family

njrat

Version

im523

Botnet

HacKed

C2

6.tcp.eu.ngrok.io:13480

Mutex

27d7f34d9cf78d41512bcff522ca0d86

Attributes
  • reg_key

    27d7f34d9cf78d41512bcff522ca0d86

  • splitter

    |'|'|

Signatures

  • Njrat family
    njrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 0d3b1f11c24df1c5b6a7628455bdbbd9.exe
    .exe windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections