General
-
Target
19a65f9a7c7622fa40412ad484e2ecd9.exe
-
Size
40KB
-
MD5
19a65f9a7c7622fa40412ad484e2ecd9
-
SHA1
c97b20be2a9cf1a911eb01429cd8597f70e3c1c7
-
SHA256
6e8bb54fdc69d7a4ce09c44ca1585b84a68efdc0044a7b965d9bd3025a9818bb
-
SHA512
c03f5bdc04c700454e2cd9792a3ad7de04a3f1e6dad3f5f6c75df1cffd171e74e1d3d29b92f4d8df29fa2060c6b664a4004fff68342c1f6033a7603055ddc9bb
-
SSDEEP
384:+8aLWS0dABLYVq6RxP8MDFF09vK563gRMmJKUv0mRvR6JZlbw8hqIusZzZFCoizT:RXcwt3tRpcnugv0
Score
10/10
Malware Config
Extracted
Family
njrat
Version
0.7d
Botnet
Aimbot
C2
0.tcp.ap.ngrok.io:14298
Mutex
277a383de3f91a0e45ac14ae07bfb3ab
Attributes
-
reg_key
277a383de3f91a0e45ac14ae07bfb3ab
-
splitter
|'|'|
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
19a65f9a7c7622fa40412ad484e2ecd9.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections