General
-
Target
13955e2ae3cf72013344f354393c83b4.exe
-
Size
37KB
-
MD5
13955e2ae3cf72013344f354393c83b4
-
SHA1
066e7ad05a738d5d66c8bcf6d815328d0152686f
-
SHA256
4af8f255dd229833ca59cf894ce9ad1e3b1685aa6d245356c04e71c2dd69ec60
-
SHA512
3e8d9fe6b983018cdb414307136121872c4784cea51d013d8665ed0c6d52cc4e10d93e8ad5b6578b2639e521524c72b47c5c6a725b22a8a18a5d444af3695267
-
SSDEEP
384:YWlZkitgZf5W9cTYXyc/SKlMA+zfzQnssIBErAF+rMRTyN/0L+EcoinblneHQM3X:llyjjTYic/SKq8ssISrM+rMRa8NuRit
Score
10/10
Malware Config
Extracted
Family
njrat
Version
im523
Botnet
HacKED
C2
0.tcp.eu.ngrok.io:11534
Mutex
b38644b0509ab3007ba1e438edc494fb
Attributes
-
reg_key
b38644b0509ab3007ba1e438edc494fb
-
splitter
|'|'|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
13955e2ae3cf72013344f354393c83b4.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections