General
-
Target
Betaloader28082023_JC.exe
-
Size
43KB
-
MD5
2499d8535f86cdedd53cc63c1d74749e
-
SHA1
3fed92d574f2c5346e59d5eb7a06545e7d78036c
-
SHA256
ef15db9bab6e075e546572b626f139d55d58f5ba8986cd82f5188ad38db88f6f
-
SHA512
43febad8a7710fb167824ea6282be32a6437fead50df483b6d147d7e2c7e38a388345bc7d747bea3545a3ada8cb964eee9e759e98eb9be3af9f0968613945ebe
-
SSDEEP
384:PZybAWKdsbhKIyKJpB4mQE+brez8Iij+ZsNO3PlpJKkkjh/TzF7pWnwEgreT0pqP:xOAdiwFKTBH+cuXQ/o9w+L
Score
10/10
Malware Config
Extracted
Family
njrat
Version
Njrat 0.7 Golden By Hassan Amiri
Botnet
Cracker
C2
contract-sally.gl.at.ply.gg:35722
Mutex
Windows Update
Attributes
-
reg_key
Windows Update
-
splitter
|Hassan|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
Betaloader28082023_JC.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections