General
-
Target
12276fe6043cc60e905ebea962bda9cb_JC.exe
-
Size
93KB
-
MD5
12276fe6043cc60e905ebea962bda9cb
-
SHA1
bbdfc5143d830b65b36e4a613f6eb96e639dc3c4
-
SHA256
8deb48a9d5d45d9f8cbf1708db73970f38b4c78e6a8501d1b351dd7a143cac06
-
SHA512
f895f0437472db920009eaa0db203fba0c2212173a880ca554e6ec05bb07fa8cd8295b5e0e11c82d0654856cf0a04c4eab4a1afb297ae787fa31a25feeb4e1f0
-
SSDEEP
1536:G+HFQWqkqqoLc2mUiIjEwzGi1dDeD0gS:G+HmkqqoA2zi5i1d4t
Score
10/10
Malware Config
Extracted
Family
njrat
Version
0.7d
Botnet
HacKed
C2
hakim32.ddns.net:2000
140.150.224.11:1576
Mutex
7198c839e5fe5b8ac348c34909cf4f96
Attributes
-
reg_key
7198c839e5fe5b8ac348c34909cf4f96
-
splitter
|'|'|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
12276fe6043cc60e905ebea962bda9cb_JC.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections