General
-
Target
acf00d8c13f4e5176aa845fc9bb07df8.exe
-
Size
93KB
-
MD5
acf00d8c13f4e5176aa845fc9bb07df8
-
SHA1
48b5f8dbd1e9453c069b09cf6f7be3449bff8c54
-
SHA256
0589376ae4d26eaec94408164964872b2cfda145b9e987c52b228531daa92da3
-
SHA512
c43a629a5789d9b82c6195d83bdde55a92987a894f8cb5e9ae2e72a79e7a0bcbb54b0eb7ecb4c8385c56a7fa40eb5115234c6a46fa0ae6ff40c1d51bb861db93
-
SSDEEP
1536:H+tFQWqkqqoLc2mUiIjEwzGi1dDeDigS:H+tmkqqoA2zi5i1d4H
Score
10/10
Malware Config
Extracted
Family
njrat
Version
0.7d
Botnet
HacKed
C2
hakim32.ddns.net:2000
140.150.224.11:1576
Mutex
7198c839e5fe5b8ac348c34909cf4f96
Attributes
-
reg_key
7198c839e5fe5b8ac348c34909cf4f96
-
splitter
|'|'|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
acf00d8c13f4e5176aa845fc9bb07df8.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections