General
-
Target
Server.exe
-
Size
23KB
-
MD5
d6723f1b5723cab6fd87bd728bb7960f
-
SHA1
920b3dd323b9437593b906b0d5cbde9ccab1ad43
-
SHA256
c11c3c9a4660fb39d958cc197f12636b39f2246bfd45bc7821f6c5ee19be6d8a
-
SHA512
6a45b940732e73a89ff0dd8bb6fe4bfdd917f28a8dcfd09af8b18448b42233cb40877416f419e576800c334ebb60eb529eed79cc4356bd8d9293cc801524e90f
-
SSDEEP
384:n8aY1ia0N/IH+WUiWiLcXyUTly2Rc87po6ngB8W+tqlf5mRvR6JZlbw8hqIusZzu:m1Re/E+WUiW6ci6NR7tZRpcnuv
Score
10/10
Malware Config
Extracted
Family
njrat
Version
0.7d
Botnet
HacKed
C2
kind-resonance-23542.pktriot.net:22930
Mutex
0c7ff2d4278efe0f9bf41c75d9239979
Attributes
-
reg_key
0c7ff2d4278efe0f9bf41c75d9239979
-
splitter
|'|'|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
Server.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections