Overview

overview

10

Static

static

10

69991b6228...b6.exe

windows7-x64

10

69991b6228...b6.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    69991b62281037e2c1c745d079781cfc3fd4b2b623b2e630051efc2ac1f55db6

  • Size

    76KB

  • MD5

    8d4be517e3d625dd1f2c71e787719885

  • SHA1

    752eeaa1d4499221511c02b86a9bb2ab5f0cbfc4

  • SHA256

    69991b62281037e2c1c745d079781cfc3fd4b2b623b2e630051efc2ac1f55db6

  • SHA512

    29580681bf4b393b213268c2d528b15b3e8eb97b8aaee94efaa3a24c0f3194e7f106d3b9cab53f8009c88f4d24dac891edff70fe1d624c1c1db2783badb2fe24

  • SSDEEP

    1536:XR7lWIOb2pz/L4LwRIz3fgfFOaukJxdUPaCkeIogBmjmYrYoX:Rlvz/L4LwRITfCFRCk1o8yrrYo

Score
10/10
njrat

Malware Config

Signatures

  • Njrat family
    njrat
  • .NET Reactor proctector 1 IoCs

    Detects an executable protected by an unregistered version of Eziriz's .NET Reactor.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 69991b62281037e2c1c745d079781cfc3fd4b2b623b2e630051efc2ac1f55db6
    .exe windows:4 windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections