Overview

overview

10

Static

static

10

dffc4423fc...ed.exe

windows7-x64

10

dffc4423fc...ed.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    dffc4423fc01900a37c31f961a0188018e22534f8459495918c317e71d0b91ed

  • Size

    37KB

  • MD5

    2388c56be7e09afd77553fc61b83355f

  • SHA1

    a9465831cab3081a51874da2b13f6f7a64e8c44e

  • SHA256

    dffc4423fc01900a37c31f961a0188018e22534f8459495918c317e71d0b91ed

  • SHA512

    d410e3936d7d7459272d7924fed82800ae15bb6b5198358d246158d669de44a2d998ca900ab92309fd4f28445ff34e0ef4bdcd2795c62a8791788bf1a2a027ee

  • SSDEEP

    384:aY0ckxsgwi+/x3+j/NSysz+KcHfj3WwSGrAF+rMRTyN/0L+EcoinblneHQM3epza:B7kalCNhsz+KcbGwVrM+rMRa8NuFmt

Score
10/10
windowsnjrat

Malware Config

Extracted

Family

njrat

Version

im523

Botnet

Windows

C2

107.2.6.1:5552

Mutex

89b6ec8d09798373104d5611ef4be48d

Attributes
  • reg_key

    89b6ec8d09798373104d5611ef4be48d

  • splitter

    |'|'|

Signatures

  • Njrat family
    njrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • dffc4423fc01900a37c31f961a0188018e22534f8459495918c317e71d0b91ed
    .exe windows:4 windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections