Overview

overview

10

Static

static

10

NEAS.3af79...80.exe

windows7-x64

10

NEAS.3af79...80.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    NEAS.3af795f2ff52a4f4c0eb78ad0c927980.exe

  • Size

    23KB

  • MD5

    3af795f2ff52a4f4c0eb78ad0c927980

  • SHA1

    c496b48d64862fae4049eb51f8baf6c3532636d5

  • SHA256

    21f210b5d70193d933351d4f00c11ce4ac115178ba2b4af17455980443eabf29

  • SHA512

    c92b554f6bcd6d18cb049842382e6665dd4bbec30a11074618dafc921e191f971a96b156585111e37d94306cc127018aed84b0f38fe4d8b2c3855e509c75597e

  • SSDEEP

    384:FY324bcgPiJLQrfARGSRUJobY6tgvSMBD3t8mRvR6JZlbw8hqIusZzZ50:6L2s+tRyRpcnup

Score
10/10
شفيرnjrat

Malware Config

Extracted

Family

njrat

Version

0.7d

Botnet

شفير

C2

127.0.0.1:5552

Mutex

2883fc4edb1562ce0315451ef0893645

Attributes
  • reg_key

    2883fc4edb1562ce0315451ef0893645

  • splitter

    |'|'|

Signatures

  • Njrat family
    njrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • NEAS.3af795f2ff52a4f4c0eb78ad0c927980.exe
    .exe windows:4 windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections