Overview

overview

10

Static

static

10

04b83cfb61...b6.exe

windows7-x64

10

04b83cfb61...b6.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    18b7b51ab055f7af12a53b1d2dd63f95_JC.bin

  • Size

    16KB

  • MD5

    a3059c0aabf272cf685be59a621a766a

  • SHA1

    193b1af4214417ed669bb61545a4e652f7ce2249

  • SHA256

    25153d8cd34517f57076e5085ce6f6fa4d8a2f0475762c473d7436248a11d4e3

  • SHA512

    d3a4a309bcfab2954e58ebbcd45dc082d95e285e102af6fd045b708133474e8651a53f422d7c533ff404f2ec447a35df88f2d677efe163fb6de0b7d6ab1094a0

  • SSDEEP

    384:UlnptTgbBJh1p7dIJPFBJ2Wq9D1p/24mmml/GD4t4mro3:U9ptTgp1RdIJZ5qD/rmmmlODm4p3

Score
10/10
hackednjrat

Malware Config

Extracted

Family

njrat

Version

im523

Botnet

HacKed

C2

147.185.221.16:33087

Mutex

0475d37e6183d457eda0a2896dbf2265

Attributes
  • reg_key

    0475d37e6183d457eda0a2896dbf2265

  • splitter

    |'|'|

Signatures

  • Njrat family
    njrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 18b7b51ab055f7af12a53b1d2dd63f95_JC.bin
    .zip

    Password: infected

  • 04b83cfb61645ef6aed2768b17841cad50bc34d31ac4c8311fae8a6038b23cb6.exe
    .exe windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections