Overview

overview

10

Static

static

10

8f0bdbeea4...c5.exe

windows7-x64

10

8f0bdbeea4...c5.exe

windows10-2004-x64

10

Resubmissions

14/10/2023, 16:50

231014-vcp4qsga9x 10

14/10/2023, 02:28

231014-cx7keadg77 10

Sharing

Copy URL Twitter E-mail

General

  • Target

    8f0bdbeea418cca81db5e2fb9cb426c5.bin

  • Size

    41KB

  • MD5

    8f0bdbeea418cca81db5e2fb9cb426c5

  • SHA1

    c5c89aeaeef275f04af45bca6a8bc372e84eff4c

  • SHA256

    6126d2fa409e74edff85214913956a6a637403804b4e3fe6c860948516287f03

  • SHA512

    a653b8bdf42eb6ceddf9612f2346f17a589b0b13a7c71a73209f5e5b45e86b3fb3fb98ffb4f5150132e3eb764902b92c9b7f12f9d8f82448df7474842316a1e2

  • SSDEEP

    768:x3SMqOpczJy19YorM+rMRa8NuhontoWh9:x3SMqOK1y1+z+gRJNmoeW

Score
10/10
h-pol has hacked you pay for your sins elitenjrat

Malware Config

Extracted

Family

njrat

Version

im523

Botnet

H-POL has hacked you pay for your sins elite

C2

127.0.0.1:5552

Mutex

f8d13c9ed0fa6495e23a0656066d9f7d

Attributes
  • reg_key

    f8d13c9ed0fa6495e23a0656066d9f7d

  • splitter

    |'|'|

Signatures

  • Njrat family
    njrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 8f0bdbeea418cca81db5e2fb9cb426c5.bin
    .exe windows:4 windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections