Overview

overview

10

Static

static

10

d59b319654...ab.exe

windows7-x64

d59b319654...ab.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    d59b319654c304a8dddf4bc3d79eeb028fa9c3c46ed8a29d9afb388d980668ab

  • Size

    37KB

  • MD5

    b1d56bb8114a018024a802b85551292b

  • SHA1

    28a7448891ecb570a71b81df93956742293a7c76

  • SHA256

    d59b319654c304a8dddf4bc3d79eeb028fa9c3c46ed8a29d9afb388d980668ab

  • SHA512

    0d676e43cb2b12bbb1471e94385b84fc38d1b338da138602712037ad9085d7c542da2f1295824a239ce991ab4326e8bd0956aa9928700c51c89eaece1c277ee4

  • SSDEEP

    768:VJoDQmUbCv/cP1mzMvWZVrM+rMRa8Nulbt:V6DAbW0NOMOZO+gRJNC

Score
10/10
hackednjrat

Malware Config

Extracted

Family

njrat

Version

im523

Botnet

HacKed

C2

192.198.0.1:5552

Mutex

176097c56cd05cf47281441673ac9cc6

Attributes
  • reg_key

    176097c56cd05cf47281441673ac9cc6

  • splitter

    |'|'|

Signatures

  • Njrat family
    njrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • d59b319654c304a8dddf4bc3d79eeb028fa9c3c46ed8a29d9afb388d980668ab
    .exe windows:4 windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections