General
-
Target
JC_89027c9c505ea145c8574c02726ccecaf5cd41ec73d05dfc86809d059b4234c9
-
Size
37KB
-
MD5
d98745233b322553e2262ed6483e3528
-
SHA1
a39915af650261eee726721c20ff84b98d4be365
-
SHA256
89027c9c505ea145c8574c02726ccecaf5cd41ec73d05dfc86809d059b4234c9
-
SHA512
19cde1c3cc346d004589b1d1c673d87ad0e817e58d8bbf01e426abb85241b87f8899b5e7c02fbd4bf62e2fff5275bf8d57201d560cd9f88e87027b5289bbb0f3
-
SSDEEP
384:ZnL+Yw7BeAaXaEiVZzdmB0O4yUvPQxgp+Z2fPnYL/6qUtirAF+rMRTyN/0L+Ecor:l6Yw7bPOTUvPfI3U8rM+rMRa8NuBMt
Score
10/10
Malware Config
Extracted
Family
njrat
Version
im523
Botnet
HacKed
C2
ctl-plg-ap-8.nsa.gov:443
Mutex
b2e30700dde72c163e3f2a5afaf275a9
Attributes
-
reg_key
b2e30700dde72c163e3f2a5afaf275a9
-
splitter
|'|'|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
JC_89027c9c505ea145c8574c02726ccecaf5cd41ec73d05dfc86809d059b4234c9
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections