General
-
Target
76359F511EE2F456F22B294A03AFB18910BA8D61CCD09.exe
-
Size
43KB
-
MD5
680bc11fac237b688cb893945ef765df
-
SHA1
d516382f4941f11f70fd321cc98e1ac3c712df9c
-
SHA256
76359f511ee2f456f22b294a03afb18910ba8d61ccd09e8a37a2e5dd996ee760
-
SHA512
166823da70d0a2ea7b017e0c3f5997f3db3273f7738cde5b42a0ee2a4335345789df80f5527821bc8a68a22d1c5e8d4a29c91c82557ca58b8f6ec820e2fb2fd5
-
SSDEEP
384:OZyK6NUst+3gUy6tZFIEEEoHjtJEzQIij+ZsNO3PlpJKkkjh/TzF7pWnq/greT0k:0qwQh6PFtkjGuXQ/oz3+L
Score
10/10
Malware Config
Extracted
Family
njrat
Version
Njrat 0.7 Golden By Hassan Amiri
Botnet
HacKed
C2
7.tcp.eu.ngrok.io:19994
Mutex
Windows Update
Attributes
-
reg_key
Windows Update
-
splitter
|Hassan|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
76359F511EE2F456F22B294A03AFB18910BA8D61CCD09.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections