General
-
Target
07a7bbf7a7d6ad69a6d0a5b7fff8c628_JC.exe
-
Size
64KB
-
MD5
07a7bbf7a7d6ad69a6d0a5b7fff8c628
-
SHA1
68c4802a682473b301fd9b1f1473eecfa3247a5c
-
SHA256
f09169b81b9f1f9cd98d796cbbf89bb05415133f38d6f28d694b5e145e93c0be
-
SHA512
fcea094c55764ec02b0d86ac64eb657b54dd5b4c6f826b010f71ad97dae2dd9fd98be0b92059c5fdef187fbfe61ac89ddf2b99b1a45b37d0fcc83ae5db5e811f
-
SSDEEP
1536:BtiSbAoN36tQQviFw1BeaHU8BnvbofLteF3nLrB9z3nNaF9baS9vM:BtiSMoN36tQQviFCAaHhBnkfWl9z9aFk
Score
10/10
Malware Config
Extracted
Family
njrat
Version
Platinum
Botnet
njrat
C2
127.0.0.1:6522
Mutex
EdgeUpdater.exe
Attributes
-
reg_key
EdgeUpdater.exe
-
splitter
|Ghost|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
07a7bbf7a7d6ad69a6d0a5b7fff8c628_JC.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections