Overview

overview

10

Static

static

10

219abee8c0...0a.exe

windows7-x64

1

219abee8c0...0a.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    83279f46256b42db62008a4756667387_JC.bin

  • Size

    10KB

  • MD5

    676d32da9804eb4e90b5aaa460c0cfae

  • SHA1

    657d1231a22042659f815b3307816becc229b0d1

  • SHA256

    8a4bea05dd24d34859ee217118c2bec12138569466343da4d3456dc73a28b7a3

  • SHA512

    93e28a3189b8af135b8b745e6c628a75140f08522dc945e55ed68c5a0992f83f28600567f94a3319fafa700d27e13583a44dff810dcda4ef3f4021ed437fdafd

  • SSDEEP

    192:snvRWgHpDAgYnjHkTLb0jvZyIXycsfrM/71jIYsBS1hNn3+145+Z/XWpphaTUnZh:s8gHps3jImLHsIOSo45CmpiUnZcAVUY

Score
10/10
nyan catnjrat

Malware Config

Extracted

Family

njrat

Version

0.7NC

Botnet

NYAN CAT

C2

dubay.duckdns.org:1994

Mutex

e6531e109e344a

Attributes
  • reg_key

    e6531e109e344a

  • splitter

    @!#&^%$

Signatures

  • Njrat family
    njrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 83279f46256b42db62008a4756667387_JC.bin
    .zip

    Password: infected

  • 219abee8c04343f51a30c8a1fe1c5dac6e948118e04d662f22dd0c4b3a787f0a.exe
    .exe windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections