General
-
Target
B36DF944B495CE1289B7A181BE61D4CF78E212C60D56E.exe
-
Size
24KB
-
MD5
f187dc908dbe5718d33bc8f966a947d0
-
SHA1
541d6ebc088e60dddca74c8bde20c08e2a54804f
-
SHA256
b36df944b495ce1289b7a181be61d4cf78e212c60d56eafdcb24fecd99f014b0
-
SHA512
e5ecc2c1b23536a2309cd33ae0068416dbd3a2a292e57a33c0a294fbade4a372a8fdabb8472e8362d4d56331e9574ccf4fce80952fe8a9322146ba8b7b4201b9
-
SSDEEP
384:i0jeCIYTNQZUuQnJXJeCXlwhPQ6VgDOwBHhdmRvR6JZlbw8hqIusZzZXzo:d3jNAU/ZVX6Rpcnucc
Score
10/10
Malware Config
Extracted
Family
njrat
Version
0.7d
Botnet
29/05/2022
C2
chromeupdate.serveirc.com:1010
Mutex
b49522f7df562e692797cebd52585519
Attributes
-
reg_key
b49522f7df562e692797cebd52585519
-
splitter
|'|'|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
B36DF944B495CE1289B7A181BE61D4CF78E212C60D56E.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections